Loading…
Seattle, WA
December 10–13, 2018
Click Here for More Information & Registration
View Venue Map

Sign up or log in to bookmark your favorites and sync them to your phone or calendar.

Maintainers Track [clear filter]
Tuesday, December 11
 

10:50am

Intro: Apps SIG - Adnan Abdulhussein, Bitnami
Join Kubernetes SIG Apps to learn about the areas of our focus, what we are working on currently, and how you can get involved. Veteran SIG Apps members will be on hand to help answer questions.

Speakers
avatar for Adnan Abdulhussein

Adnan Abdulhussein

Software Engineer, Bitnami
Adnan Abdulhussein is a Software Engineer at Bitnami, where he works on building tools to make apps easier to run on Kubernetes. He contributes to the Kubernetes community as a co-chair of SIG-Apps and a core maintainer of the Helm project. Adnan is passionate about cloud-native infrastructure... Read More →



Tuesday December 11, 2018 10:50am - 11:25am
3 A/B

10:50am

Intro: Auth SIG - Jordan Liggitt & Tim Allclair, Google
SIG Auth is responsible for the design, implementation, and maintenance of features in Kubernetes that control and protect access to the API and other core components. In this session, we'll give an overview of the work the SIG is doing, improvements and features added over the past year, and some of the plans for upcoming releases.

Speakers
avatar for Tim Allclair

Tim Allclair

Google, Software Engineer
Tim Allclair joined the Kubernetes project with Google just after the 1.0 launch in 2015. He co-chairs sig-auth, is an active sig-node contributor, and a member of the Kubernetes Product Security Team (responsible for responding to vulnerabilities in Kubernetes). His most recent charter... Read More →
avatar for Jordan Liggitt

Jordan Liggitt

Staff Software Engineer, Google
Jordan Liggitt is a staff software engineer at Google, and helps lead Kubernetes authentication, authorization, and API server efforts.



Tuesday December 11, 2018 10:50am - 11:25am
602-604

10:50am

Intro: CNCF Trail Map - Dee Kumar, Cloud Native Computing Foundation
The interactive landscape -- l.cncf.io -- allows you to filter and sort hundreds of cloud-native projects and products, and review details including GitHub stars, funding or market cap, first and last commits, contributor counts, headquarters location, and recent tweets. Engage in a small group to discuss how the landscape was built and what should change about it going forward

Speakers
avatar for Dee Kumar

Dee Kumar

Vice President, Developer Marketing, Linux Foundation
Dee Kumar has more than 15 years of cloud computing experience. Her work at CNCF is focused on working with the developer and IT pro communities to advance open source projects at scale. Most recently, Kumar was Director of Product Marketing at Docker where she built and launched... Read More →


Tuesday December 11, 2018 10:50am - 11:25am
2 A/B

10:50am

Intro: IBMCloud SIG - Sahdev Zala & Richard Theis, IBM
The presentation will cover an overview of the SIG-IBMCloud and highlights of the SIG activities. It will also provide an overview of how the SIG and IBMCloud contribute to the upstream work in various areas like scalability, networking, cloud registry, Helm and SIG App. We will also brief on near-term roadmap for the SIG. 

Speakers
avatar for Richard Theis

Richard Theis

IBM, Senior Software Engineer
Richard Theis is a Senior Software Engineer in the IBM Cloud division. In his current role, Richard leads Kubernetes update development and support for IBM Cloud Kubernetes Service. He is a co-chair of the Kubernetes IBM Cloud SIG.
avatar for Sahdev P. Zala

Sahdev P. Zala

Senior Software Engineer, IBM
Sahdev P. Zala is a Senior Software Engineer in the IBM Digital Business Group Open Technology division. In his current role, Sahdev is focused on contributing to the Kubernetes and etcd upstream development. He is a member of Kubernetes and etcd-io github organization. He is also... Read More →



Tuesday December 11, 2018 10:50am - 11:25am
Skagit 2 @ TCC The Conference Center (TCC) - Separate from WSCC building

10:50am

Intro: VMware SIG - Fabio Rapposelli & Steve Wong, VMware
Join the SIG VMware introduction session to learn our mission, recent accomplishments and discuss future work. We will also focus on how new contributors can get involved in the SIG. Kubernetes has the concept of a Cloud Provider, which is a standardized module which allows Kubernetes to run on various platforms which might have different implementations of networking, storage, and node management. Kubernetes is in the process of moving to a new “out of tree” cloud manager architecture to allow cloud providers to have independent feature and patch release cycles. Learn how the vSphere cloud provider is evolving to meet this new model. This session will outline how to get started when you deploy Kubernetes on vSphere infrastructure, on-prem or in a public cloud. Material covered is applicable to kubeadm deployments, and when using Kubernetes distributions on vSphere infrastructure.

Speakers
avatar for Fabio Rapposelli

Fabio Rapposelli

Staff Engineer 2, VMware
Purveyor of all things open source, loves distributed systems and solving complex problems. Renaissance man and human Rube Goldberg machine, Fabio is responsible for many of the Open Source integrations between Vagrant, Docker and VMware. Frequent speaker at conferences such as dotGo... Read More →
avatar for Steven Wong

Steven Wong

Open Source Engineer, VMware
Steve Wong has been active in the Kubernetes and Apache Mesos communities since 2015. He is chair of the VMware SIG, and a co-organizer of the IoT and Edge Working Group on the Kubernetes project. He is a past speaker at KubeCon, MesosCon, Open Source Summit, SCALE, and meetups in... Read More →



Tuesday December 11, 2018 10:50am - 11:25am
615-617

11:40am

Intro: Cluster Lifecycle SIG – Robert Bailey, Google & Timothy St. Clair, Heptio
The Cluster Lifecycle SIG is the Special Interest Group that is responsible for building the user experience for deploying and upgrading Kubernetes clusters. Our mission is examining how we should change Kubernetes to make it easier to operate. Since the group's formation we have focused on creating kubeadm, a streamlined installer tool and building block to simplify the installation and upgrade experience, and building a Cluster API to provide an abstraction of machines across different deployment environments and a common control plane configuration. In this introduction session, we will present the SIG's mission statement, review recent accomplishments, and discuss our future plans, where you are very welcome to contribute to the discussion. We will also focus on how new contributors can get involved in helping shape the future of Kubernetes' cluster lifecycle management.

Speakers
avatar for Robert Bailey

Robert Bailey

Staff Software Engineer, Google
Robert is part of Google's Cloud Gaming team working on open source gaming infrastructure projects founded by Google such as Agones and Open Match. He was previously a lead for the Cluster Lifecycle SIG, worked on Kubernetes for more than 4 years, and was one of the founding members... Read More →
avatar for Timothy St. Clair

Timothy St. Clair

Senior Staff Engineer, VMware
Timothy St. Clair is a Staff Software Engineer at Heptio and is a core contributor to the Kubernetes project, a Steering Committee member, and a lead on SIG-Cluster-Lifecycle. Timothy has worked on the development and integration of various open source distributed systems projects... Read More →



Tuesday December 11, 2018 11:40am - 12:15pm
3 A/B

11:40am

Intro: Harbor - Steven Zou & Henry Zhang, VMware
As container technology become widely adopted in the industry, how to manage containerized applications poses new challenges to platform engineers. One of the challenges is to securely and efficiently manage container images. Project Harbor is an open source trusted cloud native registry project that stores, signs, and scans content, thus resolving common image management challenges. In this presentation, we will focus on the management of container images through Harbor. We will review and provide solutions to challenges faced by organizations, including RBAC (Role Based Access Control), vulnerability scanning, large scale image distribution, image replication and image provenance (notary). Real world use cases will be discussed in the session.

Speakers
avatar for (Haining Henry) Zhang

(Haining Henry) Zhang

Technical Director, VMware
Henry Zhang is the Chief Architect of China R&D, VMware. His primary role is to lead the development and incubation of projects on emerging technologies, including container, blockchain and AI. He was the founder of CNCF’s Project Harbor. Henry was the first evangelist in China... Read More →
avatar for Steven Zou

Steven Zou

Staff Engineer, VMware
Jia Zou (Steven) is a staff engineer of VMware China R&D. He is primarily working on the open source Project Harbor which is an enterprise-class container image registry as lead engineer and core maintainer. Moreover, he’s doing innovation and incubation of projects on Kubernetes... Read More →



Tuesday December 11, 2018 11:40am - 12:15pm
602-604

11:40am

Intro: Service Catalog SIG - Jonathan Berkhahn, IBM & Carolyn Van Slyck, Microsoft Azure
This is an introduction to the Kubernetes Service Catalog project. Service Catalog lets you provision cloud services, regardless of where they are hosted, directly from the comfort of native Kubernetes tooling. This works across platforms because we follow the Open Service Broker API, an open standard to provision and manage cloud services. Learn how you can use Service Catalog to access third-party services from your Kubernetes applications. We will walk through provisioning a database directly through Kubernetes and and then connect to it from an application running on the cluster.

Speakers
JB

Jonathan Berkhahn

Open Source Contributor, IBM
Jonathan Berkhahn is an open source contributor working on behalf of IBM. He co-chairs SIG Service Catalog and is a Member of the Open Service Broker API working group. He also manages his own open source project Blockhead, an OSB broker for provision blockchain nodes for use by cloud... Read More →
avatar for Carolyn Van Slyck

Carolyn Van Slyck

Software Engineer, Microsoft
Carolyn is a software developer based in the wilds of suburban Chicago, working remote on the Microsoft Azure team. Her passion is developer tools, and building vibrant inclusive open-source communities around them.Carolyn is a maintainer for Kubernetes Service Catalog and the GoMods... Read More →


Tuesday December 11, 2018 11:40am - 12:15pm
615-617

11:40am

Intro: Storage SIG - Saad Ali, Google
Join Kubernetes SIG Storage to learn about the areas of our focus, what we are working on currently, and how you can get involved. Veteran SIG Storage members will be on hand to help answer questions.

Speakers
avatar for Saad Ali

Saad Ali

Senior Software Engineer, Google
Saad Ali is a senior software engineer at Google where he works on the open-source Kubernetes project. He joined the project in December 2014, and has led the development of the Kubernetes storage and volume subsystem. He serves as a lead of the Kubernetes Storage SIG, and is co-author... Read More →


Tuesday December 11, 2018 11:40am - 12:15pm
618-620

11:40am

Intro: Virtual Kubelet - Ria Bhatia, Microsoft & Ben Corrie, VMware
The intro to virtual kubelet session will go through the architectural design and the history of the virtual kubelet project. The session will feature use cases, demos and current ways of using virtual kubelet in your own kubernetes clusters to scale into burst capacity, or manage other kinds of resources like IoT Edge deployments. 

Speakers
avatar for Ria Bhatia

Ria Bhatia

Program Manager, Microsoft
Ria Bhatia is a Program Manager with the Cloud Native Compute team in Microsoft. She's a maintainer of the open source project, Virtual Kubelet and has spoken at multiple conferences and meet-ups. She believes deeply in changing the tech landscape to include members from all backgrounds... Read More →
BC

Ben Corrie

Senior Staff Engineer, VMware


Tuesday December 11, 2018 11:40am - 12:15pm
2 A/B

1:45pm

Intro: Envoy - Matt Klein & Constance Caramanolis, Lyft
In this intro to Envoy, Constance will conduct a live demo in which she: - Builds a simple Envoy configuration and explains what each component does. - Runs the configuration using the Envoy docker container. - Sends traffic through Envoy. - Provides an overview of Envoy's observability and administration output. - Covers additional resources for further learning.

Speakers
avatar for Constance Caramanolis

Constance Caramanolis

Software Engineer, Lyft
Constance Caramanolis is a Software Engineer at Lyft working on the Server Networking team. For the past two years, she has built and deployed Envoy and its ecosystem. Constance focuses on configuration management, network security and engineering education. In addition, she is an... Read More →
avatar for Matt Klein

Matt Klein

Creator, Envoy
Matt Klein is the creator of Envoy and a software engineer at Lyft. He has been working on operating systems, virtualization, distributed systems, networking and making systems easy to operate for nearly 20 years across a variety of companies. Some highlights include leading the development... Read More →


Tuesday December 11, 2018 1:45pm - 2:20pm
602-604

1:45pm

Intro: Kubernetes SIG Multicluster - Daneyon Hansen, Cisco, Quinton Hoole & Irfan Ur Rehman, Huawei
SIG-Multicluster is focused on solving common challenges related to the management of multiple Kubernetes clusters, and applications that exist therein. We are responsible for designing, discussing, implementing and maintaining API’s, tools and documentation related to multi-cluster administration and application management. This includes not only active automated approaches such as Cluster Federation, but also those that employ batch workflow-style continuous deployment systems like Spinnaker and others. Standalone building blocks for these and other similar systems (for example a cluster registry), and proposed changes to kubernetes core where appropriate are in scope. In this intro we will give you an overview of the projects we're currently actively working on, how best to get involved, and what our future plans look like.

Speakers
avatar for Daneyon Hansen

Daneyon Hansen

Principal Software Engineer, Cisco
Daneyon is a software engineer at Cisco responsible for developing distributed applications. As part of the Cloud CTO Office, Daneyon focuses on contributing to emerging cloud computing technologies such as Kubernetes, Istio and others.
avatar for Quinton Hoole

Quinton Hoole

Technical Vice President, Futurewei
https://www.linkedin.com/in/quintonhoole/YouTube me for previous presentations.CNCF TOC Member
IU

Irfan Ur Rehman

Senior Engineer, Turbonomic
Irfan is a senior engineer associated with the Advanced Engineering group at Turbonomic. In his current role he is tasked with drafting multi cluster capabilities for Turbonomic’s analytics platform. He has also been associated with SIG Multicluster, particularly Kubernetes Cluster... Read More →



Tuesday December 11, 2018 1:45pm - 2:20pm
615-617

1:45pm

Intro: Release SIG - Tim Pepper, VMware & Aishwarya Sundar, Google
You could be a member of the Release Team. Yes, you! This interactive session will feature discussion with members of SIG Release's subproject release teams for 1.13 and 1.12. We will describe how Kubernetes project volunteers manage the quarterly release cadence of the project. We will give an overview of the release process and release team and how these combine across all of the kubernetes SIGs with the goal of producing high quality Kubernetes releases on a reliable schedule. And we will highlight the opportunities for both new and experienced community members (like you!) to get involved.

Speakers
avatar for Tim Pepper

Tim Pepper

Software Engineer, VMware
Tim is a Senior Staff Engineer in VMware's Open Source Technology Center with over 20 years in open source. He works as an open source developer advocate and contributor to Kubernetes (SIG Release chair; WG LTS organizer). Prior work includes Linux kernel/drivers/distributions, software... Read More →
avatar for Aishwarya Sundar

Aishwarya Sundar

GKE /OSS Test Engineer, Google
I am Test Engineer with Google in the GKE/OSS EngProd team. I work on improving and maintaining test coverage, tooling and infra. A newbie in the k8s world and quickly ramping up.



Tuesday December 11, 2018 1:45pm - 2:20pm
Skagit 2 @ TCC The Conference Center (TCC) - Separate from WSCC building

1:45pm

Intro: Telepresence - Rafael Schloming, Datawire & Adnan Abdulhussein, Bitnami
How do you set up a productive development environment on Kubernetes? With microservices and cloud databases, creating a local development environment is very complex. In this talk, we’ll cover the different approaches to developing services on Kubernetes. We’ll then introduce Telepresence and show how it can be used to enable local development of Kubernetes services. We’ll cover how Telepresence is used for real-world development of the Kubeapps project. We’ll take a peek under the hood to show how Telepresence works. We’ll finally wrap with a discussion of the Telepresence roadmap.

Speakers
avatar for Adnan Abdulhussein

Adnan Abdulhussein

Software Engineer, Bitnami
Adnan Abdulhussein is a Software Engineer at Bitnami, where he works on building tools to make apps easier to run on Kubernetes. He contributes to the Kubernetes community as a co-chair of SIG-Apps and a core maintainer of the Helm project. Adnan is passionate about cloud-native infrastructure... Read More →
avatar for Rafael Schloming

Rafael Schloming

Co-founder and Chief Architect, Datawire
Rafael Schloming is Co-founder and Chief Architect of Datawire. He is a globally recognized expert on messaging and distributed systems and a spec author of the AMQP specification. He has spoken on microservices at numerous technical conferences including ApacheCon, the O’Reilly... Read More →



Tuesday December 11, 2018 1:45pm - 2:20pm
618-620

1:45pm

Intro: TUF/Notary - Justin Cappos, NYU & Justin Cormack, Docker
Software distribution and packaging systems are rapidly becoming the weak link in the software lifecycle. This talk provides an accessible overview of two CNCF projects (Notary and TUF), that provide what has been roundly described as the most secure mechanism for distributing software. Notary, which implements the TUF specification, signs and transparently validates metadata to enable the system to recover from the compromise of servers, theft of keys, insider attacks, etc. Notary / TUF are surprisingly easy to use and used to provide cutting edge security not only across major cloud companies, but a diverse set of adopters, including automobiles. WARNING: Attending this talk may cause (justifiable) fear in the software update mechanism on your devices!

Speakers
avatar for Justin Cappos

Justin Cappos

Professor, NYU
Justin Cappos is a professor in the Computer Science and Engineering department at New York University, who strives to provide service to society through technology. Justin's research philosophy focuses on solving real world security problems in practice. He and his students often... Read More →
avatar for Justin Cormack

Justin Cormack

Security Lead, Docker
Justin Cormack is security lead at Docker, a maintainer on the CNCF's Notary project, and a contributor to the CNCF SIG Security. He is particularly interested in container security, application isolation, authentication, policy and supply chain security. He has spoken at several... Read More →


Tuesday December 11, 2018 1:45pm - 2:20pm
3 A/B

2:35pm

Deep Dive: Envoy - Matt Klein & Constance Caramanolis, Lyft
This is an Envoy Q&A session where several maintainers will be available to discuss anything and everything. Come with your questions, concerns, feature requests, etc. and we will chat!

Speakers
avatar for Constance Caramanolis

Constance Caramanolis

Software Engineer, Lyft
Constance Caramanolis is a Software Engineer at Lyft working on the Server Networking team. For the past two years, she has built and deployed Envoy and its ecosystem. Constance focuses on configuration management, network security and engineering education. In addition, she is an... Read More →
avatar for Matt Klein

Matt Klein

Creator, Envoy
Matt Klein is the creator of Envoy and a software engineer at Lyft. He has been working on operating systems, virtualization, distributed systems, networking and making systems easy to operate for nearly 20 years across a variety of companies. Some highlights include leading the development... Read More →


Tuesday December 11, 2018 2:35pm - 3:10pm
602-604

2:35pm

Intro: Cloud Native Buildpacks – Terence Lee & Joe Kutner, Salesforce Heroku
You're great at running containers but you shouldn't have to be great at building them. In this talk, you'll learn about Cloud Native Buildpacks, a higher-level abstraction for building apps compared to Dockerfiles. 

Buildpacks are a standardized tool for creating images in a secure, reproducible, and efficient manner. As an app developer, you don't need to know best practices around ordering commands for layer reuse. As an operator, you don't need to worry about exposing developers to the responsibilities that come with Dockerfile.

Come learn how buildpacks meet developers at their source code, automate the delivery of both OS-level and application-level dependency upgrades, and help you efficiently handle day-2 app operations.

Speakers
avatar for Joe Kutner

Joe Kutner

Architect, Salesforce Heroku
Joe owns the Java Experience on the Salesforce Heroku cloud. He's the author of several titles from the Pragmatic Bookshelf, including The Healthy Programmer.
TL

Terence Lee

Principle Engineer, Salesforce Heroku
Terence co-created buildpacks in 2011 at Heroku. Since then, he's owned the Ruby experience which has lead to work as the maintainer of Bundler, joining the Ruby core team, and the Ruby security team. Now, he works across all 6 supported languages on the platform.


Tuesday December 11, 2018 2:35pm - 3:10pm
615-617

2:35pm

Intro: CNCF Cross-Cloud CI - Denver Williams, Debian & Taylor Carpenter, Vulk Coop
The CNCF CI Working Group was asked to demonstrate best practices for integrating, testing, and deploying projects within the CNCF ecosystem across multiple cloud and bare metal providers. The Cross-Cloud CI project continually validates the interoperability of each CNCF project, for any commit on stable and head, running on Kubernetes clusters which are provisioned to all supported cloud providers. The results of each testing stage are published to the cncf.ci status dashboard. An Intro session will give an overview of the project, technologies used, a demo of the current status of the CI System and dashboard, and allow time for Q&A.

Speakers
avatar for Taylor Carpenter

Taylor Carpenter

Partner / Senior Factotum, Vulk Coop
Partner at Vulk Cooperative - http://vulk.coop | Project Lead cncf.ci + CNF Testbed. OpenSource advocate, using Linux since 1994 with the 1.0 release and gnu tools on other unix systems before that. OpsDev geek. Elixir and Ruby programmer. Proponent of improving user experience (UX... Read More →
DW

Denver Williams

Project Co-Lead, cncf.ci, Vulk Coop



Tuesday December 11, 2018 2:35pm - 3:10pm
2 A/B

2:35pm

Intro: Contributor Experience SIG - Paris Pittman, Google & Elsie Phillips, Red Hat
We will be covering what contributor experience is, how we help the project, the projects we are current working on (if the talk were today: mentoring, automated workflows, new contributor onboarding, communication pipelines, etc.), and how folks can get involved

Speakers
EP

Elsie Phillips

Product Marketing Manager, Red Hat
avatar for Paris Pittman

Paris Pittman

Kubernetes OSS Strategy, Google
Paris is a Developer Relations Program Manager on Google Cloud's Open Source Strategy team focusing on the Kubernetes Community. She is a co-chair of the special interest group for Contributor Experience and an organizer of Bay Area Kubernetes Meetup with 4,000 members. She has 14... Read More →


Tuesday December 11, 2018 2:35pm - 3:10pm
Skagit 2 @ TCC The Conference Center (TCC) - Separate from WSCC building

2:35pm

Intro: OpenStack SIG - Chris Hoge, OpenStack Foundation & David Lyle, Intel
SIG OpenStack coordinates the cross-community efforts of the OpenStack and Kubernetes communities. This includes coordinating improvements to and documentation of the OpenStack cloud provider implementation in Kubernetes as well as supporting efforts to deploy OpenStack itself using Kubernetes. Attend this session to learn more about the SIG's mission, recent accomplishments, and future plans.

Speakers
avatar for Chris Hoge

Chris Hoge

Senior Technical Marketing Manager, GitLab
Chris Hoge was the Senior Strategic Program Manager for the OpenStack Foundation, where he focused on interoperability testing and containers. He’s also active in the Kubernetes community as a co-lead on both the OpenStack and Cloud Provider SIGs. Previously he worked on cloud automation... Read More →
avatar for David  Lyle

David Lyle

Senior Software Engineer, Intel
David Lyle works on cloud technologies as a Cloud Software Architect in Intel's Open Source Technology Center. David is primarily focused on Kubernetes and OpenStack.



Tuesday December 11, 2018 2:35pm - 3:10pm
3 A/B

3:40pm

Intro: containerd - Mike Brown, IBM & Derek McGowan, Docker
Join containerd maintainers to learn about the design, project goals and history of containerd. We will cover the tools used for interacting with containerd, such as ctr and crictl. We’ll also show you how to monitor pods and containers using Prometheus and go over containerd’s plugin model to show how containerd was built to support new custom extensions. You’ll learn about Kubernetes’ Container Runtime Interface (CRI) and how to configure containerd’s CRI plugin to enable using containerd as the container runtime for Kubernetes. By the end you will understand how to get started using containerd as a developer, contributor, or system administrator for a wide variety of use cases.

Speakers
avatar for Mike Brown

Mike Brown

Containerd Maintainer, IBM
Open Source Software Engineer, Containerd, OCI, Kubernetes, container runtimes, IBMer, github.com/IBM/cap, Inventor, Coach, PC Gamer, and Proud Father.
avatar for Derek McGowan

Derek McGowan

Docker, Software Engineer


Tuesday December 11, 2018 3:40pm - 4:15pm
3 A/B

3:40pm

Intro: CoreDNS - Yong Tang, MobileIron, Inc & Cricket Liu, Infoblox
CoreDNS is a flexible and extensible DNS server with a focus on service discovery. Often used as a part of the Kubernetes deployment, CoreDNS can serve as the cluster DNS for Kubernetes. With the unique plugin-based architecture, CoreDNS can also be used in many other places, either by functionalities provided out of the box, or by customized plugins. In this session, we will update CoreDNS' current state and the road map for the near future. The expected release of CoreDNS as the default DNS server for Kubernetes will be discussed heavily. We will also look into the integration with cloud vendors, for the extended and advanced usage of service discovery with CoreDNS.

Speakers
avatar for Cricket Liu

Cricket Liu

Chief DNS Architect, Infoblox
Cricket Liu is an authority on the Domain Name System and the co-author of all of O'Reilly Media’s books on DNS, including the classic DNS and BIND. As Infoblox’s Chief DNS Architect, Cricket guides the development of Infoblox’s product and business strategy, and serves as a... Read More →
avatar for Yong Tang

Yong Tang

Director of Engineering, MobileIron
Yong Tang is the Director of Engineering at MobileIron working on cloud infrastructure. He contributes to different container and machine learning projects for the open source community. He is a maintainer of CoreDNS and Docker/Moby projects, and had multiple talks in KubeCon before... Read More →



Tuesday December 11, 2018 3:40pm - 4:15pm
2 A/B

3:40pm

Intro: Falco - Loris Degioanni, Sysdig
Host intrusion detection (HID) has been around for some time. What if we rethought the problems HID solves in the context of Cloud Native platforms? What if we can detect abnormal behavior in the application, container runtime, & cluster environment as well? In this talk, we’ll present Falco, a CNCF Sandbox project for runtime security. We will show how Falco taps Linux system calls & the Kubernetes API to provide low level insight into application behavior, & how to write Falco rules to detect abnormal behavior. We’ll show how to collect & aggregate alerts using an EFK stack (Elasticsearch, Fluentd, Kibana). Finally we will show how Falco can trigger functions to stop abnormal behavior, & isolate the compromised Pod or Node for forensics. Attendees will leave with a better understanding of what problems runtime security solves, & how Falco can provide runtime security & incident response.

Speakers
LD

Loris Degioanni

Founder & CTO, Sysdig
Loris Degioanni is the CTO and founder of Sysdig, the container intelligence platform. He is also the creator of the popular open source troubleshooting tool, sysdig, and the open source container security tool Falco. Prior to founding Sysdig, Loris co-created Wireshark, the open... Read More →


Tuesday December 11, 2018 3:40pm - 4:15pm
615-617

3:40pm

Intro: Fluentd - Eduardo Silva & Masahiro Nakagawa, Treasure Data
Fluentd and it ecosystem logging projects are a fundamental and critical piece for observability in Cloud Native environments. On this introduction session you will learn the basics of Logging, the pipeline applied to Kubernetes and overall features associated with filtering, buffering and log centralization/aggregation in general.

Speakers
MN

Masahiro Nakagawa

Principal Engineer, Arm Treasure Data
Fluentd maintainer
avatar for Eduardo Silva

Eduardo Silva

Principal Engineer, Arm Treasure Data
Eduardo is a Principal Engineer at ARM / Treasure Data. He currently leads the efforts to make logging and data processing more friendly and scalable in Embedded and Containerized systems such as Kubernetes. Maintainer of Fluent Bit, a Fluentd open source sub-project.



Tuesday December 11, 2018 3:40pm - 4:15pm
618-620

3:40pm

Intro: Vitess - Dan Kozlowski & Sugu Sougoumarane, PlanetScale
Vitess has been a member of CNCF since early 2018, and is continuing to gain adoption as the Cloud-Native database solution. This talk will focus on the basic features of vitess that make it cloud friendly. We'll also cover how it addresses indefinite scalability.

Speakers
DK

Dan Kozlowski

Lead Engineer, PlanetScale
avatar for Sugu Sougoumarane

Sugu Sougoumarane

CTO, PlanetScale
Sugu is CTO at PlanetScale. He is also the lead developer and community leader of the Vitess open source project which he co-created at Youtube in 2010. Vitess has helped multiple companies scale MySQL massively. Prior to Vitess, he worked on various scaling and infrastructure projects... Read More →



Tuesday December 11, 2018 3:40pm - 4:15pm
Skagit 2 @ TCC The Conference Center (TCC) - Separate from WSCC building

4:30pm

Intro: CNCF Serverless WG / CloudEvents - Doug Davis, IBM & Clemens Vasters, Microsoft
Provide an introduction to the CNCF Serverless Working Group, the CloudEvents specification and the new Workflow sub-group. More details later...

Speakers
avatar for Doug Davis

Doug Davis

STSM / OM Knative, IBM
Doug works in IBM's Hybrid Cloud division. He's been working on Cloud related technologies for many years and has worked on many of the most popular OSS projects, including OpenStack, CloudFoundry, Docker and Kubernetes. He's currently the OM for Knative, co-chairing the CNCF's Serverless... Read More →
avatar for Clemens Vasters

Clemens Vasters

Principal Architect, Azure Messaging, Microsoft
Clemens Vasters is Lead Architect in Microsoft’s Azure Messaging team that builds and operates a fleet of hyper-scale messaging services, including Event Grid, Service Bus, and Event Hubs. Clemens represents Microsoft in messaging standardization in OASIS (AMQP) and CNCF (CloudEvents... Read More →



Tuesday December 11, 2018 4:30pm - 5:05pm
615-617

4:30pm

Intro: Helm - Matt Farina, Samsung SDS
Helm is a package manager that provides the tools to find, share, and use software built for Kubernetes. The package management features allow you to define, install, and upgrade applications while also handling dependencies on other applications. In this session you will learn about: - Why Helm and package management are useful to applications in Kubernetes - A brief history of Helm - The different parts of Helm and how they work together - Publicly sharing applications through charts - Where Helm is headed

Speakers
avatar for Matt Farina

Matt Farina

Senior Staff Engineer, Samsung
Matt works on the Cloud Native Computing Team at Samsung SDS where he focuses on cloud native applications and open source software. He is a published author, speaker, and regular contributor to open source. He is a maintainer for multiple open source projects, including Helm, and... Read More →



Tuesday December 11, 2018 4:30pm - 5:05pm
602-604

4:30pm

Intro: NATS - Colin Sullivan & Wally Quevedo, Synadia
Join members of the NATS team to learn about NATS Messaging! Distributed systems architecture has been disrupted via decomposition as cloud technology has matured - we’ve seen a migration from monolithic applications to microservices. This has created a need for multiple communication patterns, location transparency, and the decoupling of data producers and consumers. NATS is a cloud-native messaging project that addresses these needs and others. In this discussion, we'll introduce you to NATS: how NATS came to be, its DNA and cover some of the problems that it solves. We’ll describe common messaging patterns, when to use them, and design principles to create NATS enabled cloud-native applications. For more information be sure to follow this up with the NATS deep dive!

Speakers
avatar for Waldemar Quevedo

Waldemar Quevedo

Synadia, Senior Engineer
Waldemar Quevedo is a Software Engineer at Synadia, where he works on the NATS project and the ecosystem around it. He is author of the "Practical NATS" book, which is one of the first books about the project. Before he was at Apcera where he worked on a container orchestration system... Read More →
avatar for Colin Sullivan

Colin Sullivan

Product Manager, Synadia
Colin is the product manager of NATS (https://nats.io). He has extensive experience developing messaging products and designing distributed systems. Prior to Synadia, Colin worked at Apcera and TIBCO software.



Tuesday December 11, 2018 4:30pm - 5:05pm
Skagit 2 @ TCC The Conference Center (TCC) - Separate from WSCC building

4:30pm

Intro: OpenMetrics - Richard (RichiH) Hartmann, SpaceNet AG
OpenMetrics is taking the Prometheus format and transforms it into a truly open standard while remaining compatible with the hundreds to integrations and dozens of data collectors that grew within our ecosystem. We will go through the current state of OM, the challenges we faced getting there, and an outlook for next steps and allies would found along the way.

We will have an extended open Q&A at the end to enable you to ask questions.

Speakers
avatar for Richard Hartmann

Richard Hartmann

Swiss Army Chainsaw, SpaceNet
Richard "RichiH" Hartmann is a technical architect at SpaceNet, leading both a new datacenter build and monitoring. By night, he is involved in several FLOSS projects, including Debian and Prometheus, and organizing related conferences, including FOSDEM, DENOG, and Chaos Communication... Read More →



Tuesday December 11, 2018 4:30pm - 5:05pm
3 A/B

4:30pm

Intro: Rook - Jared Watts, Upbound
In this talk, we will be introducing the Rook project to attendees of all levels and experience. Rook is an open source cloud-native storage orchestrator for Kubernetes, providing the platform, framework, and support for a diverse set of storage solutions to natively integrate with cloud-native environments. Rook turns storage software into self-managing, self-scaling, and self-healing storage services. It does this by automating deployment, bootstrapping, configuration, provisioning, scaling, upgrading, migration, disaster recovery, monitoring, and resource management. We will explore the benefits and use cases of Rook, and we will also walk through the architecture that the project is built on. Rook was accepted as the first storage project hosted by the Cloud Native Computing Foundation (CNCF) in January 2018.

Speakers
avatar for Jared Watts

Jared Watts

Founding Engineer, Upbound
Jared Watts is a Founding Engineer at Upbound, where he is working on advancing cloud-native computing by "freeing the cloud". He is also a senior maintainer for the open source Rook (https://rook.io/) and Crossplane (https://crossplane.io/) projects. Prior to Upbound, Jared worked... Read More →



Tuesday December 11, 2018 4:30pm - 5:05pm
2 A/B
 
Wednesday, December 12
 

10:50am

Deep Dive: CNCF Cross-Cloud CI – Denver Williams, Debian & Taylor Carpenter, Vulk Voop
The CNCF CI Working Group was asked to demonstrate best practices for integrating, testing, and deploying projects within the CNCF ecosystem across multiple cloud and bare metal providers. The Cross-Cloud CI project continually validates the interoperability of each CNCF project, for any commit on stable and head, running on Kubernetes clusters which are provisioned to all supported cloud providers. The results of each testing stage are published to the cncf.ci status dashboard. This Deep Dive session will discuss how to implement CNCF projects (for build and e2e testing) and cloud providers (for Kubernetes provisioning). It may include an interactive walk-through of adding a new project or cloud provider to the Cross-Cloud CI system.

Speakers
avatar for Taylor Carpenter

Taylor Carpenter

Partner / Senior Factotum, Vulk Coop
Partner at Vulk Cooperative - http://vulk.coop | Project Lead cncf.ci + CNF Testbed. OpenSource advocate, using Linux since 1994 with the 1.0 release and gnu tools on other unix systems before that. OpsDev geek. Elixir and Ruby programmer. Proponent of improving user experience (UX... Read More →
DW

Denver Williams

Project Co-Lead, cncf.ci, Vulk Coop



Wednesday December 12, 2018 10:50am - 11:25am
Tahoma 5 @ TCC The Conference Center (TCC) - Separate from WSCC building

10:50am

Deep Dive: gRPC Node - Michael Lumish, Google
A look at the Node gRPC implementations, their interoperability, and future development plans.

Speakers
ML

Michael Lumish

Software Engineer, Google
Michael is a Software Engineer at Google. Michael is the original author and primary maintainer of the Node gRPC library.



Wednesday December 12, 2018 10:50am - 11:25am
602-604

10:50am

Intro: CLI SIG – Mengqi Yu & Sean Sullivan, Google
This "intro" session will provide basic information to facilitate new SIG CLI contributors. This session will present an overview of the "kubectl" code base, as well as the basics of the development process. We will give a short history of this project. We will leave a significant amount of time for Q&A.

Speakers
avatar for Sean Sullivan

Sean Sullivan

Software Engineer, Google
Sean Sullivan is a Software Engineer at Google, a co-chair of the SIG CLI (Command Line Interface), and an active SIG CLI contributor. His most recent work includes moving kubectl out of the Kubernetes core repository, and into its own repository (https://github.com/kubernetes/ku... Read More →
MY

Mengqi Yu

Software Engineer 软件工程师, Google
Mengqi has been working on the open source Kubernetes project and Google Kubernetes Engine (GKE) for more than 2 years. He is one of the maintainers of kubectl, kubebuilder and he is also one of the core contributor to the kustomize project.于梦琦已经在Google为开源Kubernetes... Read More →



Wednesday December 12, 2018 10:50am - 11:25am
2 A/B

10:50am

Intro: Minikube - Thomas Strömberg & Bálint Pató, Google
If you want to develop applications for kubernetes and try them out locally first, minikube is going to be your best bet. Come and explore the functionality of minikube via an introductory session from minikube maintainers from Google. We will cover the basics of getting started with minikube, how the local environment compares to a full kubernetes cluster and what customizations you can do to bring the maximum out of your local experience.

Speakers
avatar for Bálint Pató

Bálint Pató

Software Engineer, Google
Bálint works for Google as a Software Engineer since July 2017 and as of recently, he is leading efforts to improve developer experience for Kubernetes in the Google Container Tools team with tools like minikube and skaffold. In his 13 years as a software engineer, he worked in companies... Read More →
avatar for Thomas Strömberg

Thomas Strömberg

Senior Software Annihilator, Google
Thomas is a minikube maintainer, and manages the Container Developer Experience team at Google. Thomas has over 20 years of experience automating complex computing environments, and has spoken at KubeCon North America & KubeCon China.Thomas previously worked on production simulations... Read More →



Wednesday December 12, 2018 10:50am - 11:25am
615-617

10:50am

Intro: PM (Kubernetes) SIG – Stephen Augustus, Red Hat & Ihor Dvoretskyi, Cloud Native Computing Foundation
Kubernetes is one of the most high-velocity open source projects in the world, and one of the most unique features of this community project - that it has it's own PM team and PM process. SIG-PM, originally established as a Product Management Group, today covers multiple aspects of Product, Program and Project Management of Kubernetes. In this session, the SIG-PM co-chairs will provide a brief overview of SIG-PM history and basic principles, the areas of interaction with the Kubernetes community, together with the information on how to start contributing to Kubernetes as a PM.

Speakers
avatar for Stephen Augustus

Stephen Augustus

Sr. Cloud Native Architect, VMware
Stephen Augustus is an active leader in the Kubernetes community. He currently serves as the Product Management Chair for Kubernetes, and a Chair for both the Release and Azure SIGs. Stephen's job at VMware includes driving meaningful interactions between internal teams and the Kubernetes... Read More →
avatar for Ihor Dvoretskyi

Ihor Dvoretskyi

Developer Advocate, CNCF
Ihor Dvoretskyi is a Developer Advocate at Cloud Native Computing Foundation, focused on Kubernetes-related efforts in the open source community.Ihor is a co-founder and co-lead of the Kubernetes Product Management Special Interest Group (SIG-PM), focused on enhancing Kubernetes as... Read More →



Wednesday December 12, 2018 10:50am - 11:25am
3 A/B

10:50am

Intro: SPIFFE - Andrew Jessup & Daniel Feldman, Scytale
Modern software development relies on many microservices working together, that in production may be distributed over different middleware systems, container schedulers, PaaS platforms, and varying cloud providers. As production environments become more complex, and dynamic - establishing trust between microservices is becomes more difficult, creating challenges for developers, operations teams, and security teams alike.

Enter SPIFFE (Secure Production Infrastructure for Everyone) and which builds on designs first championed at Google, Twitter and elsewhere to provide robust authentication and trust between disparate micro-services. SPIFFE and SPIRE make it trivial to establish trust between workloads that may be elastically scaled and dynamically scheduled and deployed in deeply heterogeneous environments.

We'll walk through the design goals for SPIFFE (a specification) and SPIRE (a multi-cloud implementation of SPIFFE), an overview of SPIRE's modular architecture, and an overview of how it can be used in conjunction with other tools such as secret stores and service meshes to build secure and scalable microservice architectures.


Speakers
avatar for Daniel Feldman

Daniel Feldman

Software Engineer, Scytale
Daniel Feldman is a Scytale software engineer who is making networks more secure by implementing SPIFFE zero-trust security. Before joining Scytale, he worked at Veritas, implementing zero-trust security for NetBackup enterprise backup software which is used by more than 10,000 c... Read More →
avatar for Andrew Jessup

Andrew Jessup

Recovering Engineer, Scytale
Recovering Engineer at Scytale



Wednesday December 12, 2018 10:50am - 11:25am
618-620

11:40am

Deep Dive: etcd - Xiang Li, Alibaba & Wenjia Zhang, Google
This is a Q&A style session where etcd maintainers will discuss frequently asked questions and interesting ideas around the project. We will leave some time for the audience to ask questions, bring concerns, or propose new features! Come and join us to learn more about etcd!

Speakers
XL

Xiang Li

Senior Staff Engineer, Alibaba
Xiang is a Senior Staff Engineer of Alibaba. He works on Alibaba’s cluster management system and helps with Kubernetes adoption for the entire Alibaba group. Prior to Alibaba, Xiang led the Kubernetes upstream team at CoreOS. He is also the creator of etcd and Kubernetes operator... Read More →
avatar for Wenjia Zhang

Wenjia Zhang

Software Engineer, Google
Wenjia Zhang is a Software Engineer on GKE team at Google. She is an active contributor for both Kubernetes and etcd open source projects.



Wednesday December 12, 2018 11:40am - 12:15pm
3 A/B

11:40am

Deep Dive: kubespray - Antoine Legrand, Red Hat & Chad Swenson, AT&T
Kubespray is one of the most versatile kubernetes-cluster manager and benefits of an extremely active community. The first half of the session we will demo and discuss the most recent features such as deploying on hybrid linux-windows cluster, enabling GPU compute nodes, share useful tips and focus in general to get more from Kubespray. On the second half of the deep-dive we would like to give voice to the community and open a discussion about how to keep moving the project forward, next priorities and allow a large amount of time for questions.

Speakers
avatar for Antoine Legrand

Antoine Legrand

Software Engineering Manager, Red Hat
Antoine Legrand is a software engineering manager at CoreOS/Red Hat. He co-founded Kubespray and works closely with major actors in the ecosystem to improve the user experience in managing application and Kubernetes clusters. Antoine is involved with open source and cloud-native software... Read More →
avatar for Chad Swenson

Chad Swenson

Lead Software Engineer, AT&T
In open-source, Chad is a maintainer of the SIG Cluster Lifecycle project - kubespray. At AT&T, Chad is the Lead Software Engineer for a Kubernetes based microservices platform that has been used in production since summer 2016.



Wednesday December 12, 2018 11:40am - 12:15pm
602-604

11:40am

Intro: Autoscaling SIG - Solly Ross, Google & Michael Hausenblas, Red Hat
SIG Autoscaling develops and maintains the components related to automated scaling in Kubernetes: the Horizontal Pod Autoscaler, Vertical Pod Autoscaler, and Cluster Autoscaler. In this introduction, we'll explain common use cases for each of the three different components, and how they can be used together to build more complex autoscaling stories. Finally, we'll cover recent ongoing development work on each of the components, and discuss plans for the autoscaling components in the upcoming Kubernetes releases.

Speakers
avatar for Michael Hausenblas

Michael Hausenblas

Developer Advocate, AWS
Michael is a Developer Advocate at AWS where he helps appops to build and operate cloud native apps. His background is in large-scale data processing and container orchestration and he's experienced in advocacy and standardization at W3C and IETF. Before AWS, Michael worked at Red... Read More →
avatar for Solly Ross

Solly Ross

Software Engineer, Google
Solly is one of the leads of the Kubebuilder project, and works on Kubernetes at Google with a focus on custom controller tooling. Solly previously worked on metrics and autoscaling, and has been hacking on various parts of Kubernetes since Kubernetes 1.2. When not writing PRs or... Read More →



Wednesday December 12, 2018 11:40am - 12:15pm
618-620

11:40am

Intro: AWS SIG - Nishi Davidson, Amazon Web Services & Justin Santa Barbara, Google
SIG AWS has been a user forum thus far. With K8s 1.13 we are doubling down on AWS’s contribution roadmap to maintain and release code, binaries, features, documentation and tests. We have 6 subprojects actively being developed with the community. We would like to discuss these projects, their release status, give an update on our 1.13 release features and our investment wrt testing and scale testing.

Speakers
avatar for Nishi Davidson

Nishi Davidson

Solution Engineering, Pulumi
Nishi Davidson has been in the cloud infrastructure and software application space for 16 years working across engineering, product and strategy in S.E Asia, MEA and the US markets. Currently she is responsible for AWS’s open source engineering efforts in the Kubernetes community... Read More →
JS

Justin SB

Software Engineer, Google
Justin has been contributing to kubernetes since 2014, acting as one of the primary developers and maintainers for the AWS support, and serves as a lead on sig-aws. He started the kops project, for managing and operating kubernetes clusters, and is a maintainer on kops. He joined... Read More →



Wednesday December 12, 2018 11:40am - 12:15pm
615-617

11:40am

Intro: Azure SIG - Khaled (Kal) Henidak , Microsoft & Stephen Augustus, Red Hat
In the SIG Azure Intro, we’re going to tell you all about why SIG Azure exists and the team behind managing it. From there, we’ll talk about what’s happened over the last few releases, Kubernetes 1.11 and Kubernetes 1.12, as well as some of what’s planned for Kubernetes 1.13. Additionally, we’ll cover some of the effort to shift cloud provider-specific code, like the Azure cloud-controller-manager, out of the core Kubernetes codebase. Finally, and most importantly, we’ll talk all about some of the best ways to get involved with SIG Azure and all of the forums that we’re communicating on!

Speakers
avatar for Stephen Augustus

Stephen Augustus

Sr. Cloud Native Architect, VMware
Stephen Augustus is an active leader in the Kubernetes community. He currently serves as the Product Management Chair for Kubernetes, and a Chair for both the Release and Azure SIGs. Stephen's job at VMware includes driving meaningful interactions between internal teams and the Kubernetes... Read More →



Wednesday December 12, 2018 11:40am - 12:15pm
2 A/B

11:40am

Intro: Windows SIG - Michael Michael, VMware & Patrick Lang, Microsoft
The chairs for SIG-Windows will provide an update on the efforts to bring Windows to Kubernetes and talk about our future roadmap. At the end we will have a Q&A session centered on requests by the community.

Speakers
avatar for Patrick Lang

Patrick Lang

Senior Software Engineer, Microsoft
Patrick Lang is a Senior Software Engineer at Microsoft building and teaching how to use Kubernetes and Windows container technologies. He is a regular speaker on Windows Server Container development and management that helped launch the tech at MS Ignite and Build conferences along... Read More →
MM

Michael Michael

Director of Product Management, VMware
Michael Michael (or M2 as he's known) is VMware's Director of Product Management. Michael also co-chairs the Kubernetes SIG-Windows which is tasked to bring Windows Server support natively to Kubernetes. Prior to VMware, Michael spend 5 years as the Senior Director of Product Management... Read More →


Wednesday December 12, 2018 11:40am - 12:15pm
Tahoma 5 @ TCC The Conference Center (TCC) - Separate from WSCC building

1:45pm

Deep Dive: Release SIG - Josh Berkus, Red Hat; Chuck Ha, Heptio; Doug MacEachern, VMware; Caleb Miles, Google
Supporting all qualified Kubernetes contributors in the Kubernetes release process, while continuing to run the release train, has been a huge effort. Increasing community stewardship of Kubernetes test and release infrastructure has been a journey which two SIG Release contributors from outside of Google, and one from The Collective, will discuss. Join us on an in depth exploration to the tooling and processes of SIG Release.You’ve heard a lot in other sessions and events about how the release cycle is managed, but not much about how the actual releases get built. And, more importantly, what this means for contributors who build Kubernetes tools, plugins, and components. Join members of SIG-Release as we discuss how the build and release actually works, and what things we’d like to change. This deep dive will describe the state of bazel builds, the release repository and the tooling around release as well as the internal-to-google workings. A member of the Kubeadm team will describe what this process means for their builds, and the Google team will explain the internal tooling they have around builds and releases. Finally, the 1.12 branch manager will talk about the Release Team’s efforts to de-Googleify many of the build and release steps.

Speakers
avatar for Josh Berkus

Josh Berkus

Community Lead at Red Hat, Red Hat
Josh Berkus is Red Hat's Kubernetes Community Manager, which is the reason he spends so much time working in SIG-Release and SIG-Contributor Experience. He's also a long-time database geek, and has done benchmarks for the TPC and SPEC. His real passion in the cloud native world is... Read More →
avatar for Chuck Ha

Chuck Ha

Systems Engineer, Heptio
kubernetes, go, seattle bouldering project
avatar for Doug MacEachern

Doug MacEachern

Sr Staff Engineer, VMware
Doug is a software engineer, currently working on Kubernetes at VMware. As a member of the Kubernetes release team, he was the Branch Manager Lead for the 1.12 and 1.13 releases.
CM

Caleb Miles

Technical Program Manager, Google



Wednesday December 12, 2018 1:45pm - 2:20pm
3 A/B

1:45pm

Intro: Cloud Provider SIG - Chris Hoge, OpenStack & Jago Macleod, Google
The long-term goal of SIG Cloud Provider is to promote a vendor-neutral ecosystem for our community. New vendors providing support for Kubernetes should feel equally empowered to do so as any of today’s existing cloud providers. More importantly, SIG Cloud Provider is focused on ensuring a consistent and high-quality user experience across providers. The SIG acts as a central group for developing the Kubernetes project in a way that ensures all providers share common privileges and responsibilities. This Intro session will go over historical context, status, and direction of efforts currently underway. We will discuss documentation and code organization and offer an opportunity for participants to offer feedback and ask questions. We will also cover the support for all cloud providers to submit test results to testgrid, the shared infrastructure for recording and visualizing test results. Finally, we will cover the next steps and roadmap for the transition of in-tree cloud providers to external repositories.

Speakers
avatar for Chris Hoge

Chris Hoge

Senior Technical Marketing Manager, GitLab
Chris Hoge was the Senior Strategic Program Manager for the OpenStack Foundation, where he focused on interoperability testing and containers. He’s also active in the Kubernetes community as a co-lead on both the OpenStack and Cloud Provider SIGs. Previously he worked on cloud automation... Read More →
JM

Jago Macleod

Engineering Director, Kubernetes & GKE, Google
Jago Macleod is an Engineering Director at Google, where he leads much of the Kubernetes and Google Kubernetes Engine (GKE) team. He also works closely with GKE’s largest customers, sophisticated Kubernetes users pushing the limits in every dimension. Prior to working at Google... Read More →



Wednesday December 12, 2018 1:45pm - 2:20pm
615-617

1:45pm

Intro: CNCF Storage WG - Alex Chircop, StorageOS & Quinton Hoole, Huawei
The CNCF Storage Working Group collaborates to explore and understand
how different storage technologies are used in cloud-native
environments. Topics include block stores, file systems, object
stores, key-value stores and databases, amongst others. Different
architectural approaches (centralized, distributed, sharded etc) are
compared in terms of key attributes like availability, scalability,
performance, data consistency, durability, fault tolerance, ease of
development and operational complexity. We seek to align the
community on common understanding, terminology, classifications and
use cases.

In this intro session we'll provide an overview of the work currently
underway and on the roadmap. You'll get the meet the people leading
these efforts, and find out how best to get involved and contribute.
We also welcome any other input you might have related to cloud-native
storage.

Speakers
avatar for Alex Chircop

Alex Chircop

Founder and CTO, StorageOS
Alex is a founder and CTO of StorageOS, building software defined solutions for cloud native environments. Before embarking on the startup adventure he spent over 25 years engineering infrastructure platforms for companies like Nomura and Goldman Sachs.
avatar for Quinton Hoole

Quinton Hoole

Technical Vice President, Futurewei
https://www.linkedin.com/in/quintonhoole/YouTube me for previous presentations.CNCF TOC Member


Wednesday December 12, 2018 1:45pm - 2:20pm
Tahoma 5 @ TCC The Conference Center (TCC) - Separate from WSCC building

1:45pm

Intro: Linkerd – William Morgan, Buoyant
In this session, William Morgan, Linkerd's maintainers, will provide an introduction to Linkerd and the service mesh model. We'll hear some lightning talks from current Linkerd production users, and finish with a brief Q&A.

Speakers
avatar for William Morgan

William Morgan

Linkerd Maintainer, Buoyant
William Morgan is the cofounder and CEO of Buoyant, creators of Linkerd. Prior to Buoyant, he was an infrastructure engineer at Twitter, where he helped move Twitter from monolith to microservices. He was a software engineer at Powerset, Microsoft, and Adap.tv, and a research scientist... Read More →


Wednesday December 12, 2018 1:45pm - 2:20pm
618-620

1:45pm

Intro: Testing SIG - Aaron Crickenberger, Google & Steve Kuznetsov, Red Hat
The Kubernetes test infrastructure schedules and executes all of the tests which validate pull requests and repositories in the Kubernetes ecosystem every day. This presentation will explore how job authors can make use of new job configuration options to write jobs that execute identically inside and outside of the test infrastructure while requiring a minimal set of configuration to be provided. Jobs defined in this manner have reproducible behavior for local debugging and do not require job authors to adopt test-infrastructure-specific frameworks or workflows.

Speakers
avatar for Aaron Crickenberger

Aaron Crickenberger

Senior Test Engineer, Google
Aaron has participated in open source since 2007, cloud since 2009, and Kubernetes since 2015. He co-founded the Kubernetes Testing SIG, and has served on the Kubernetes Steering Committee since its inception in 2017. He has participated in every Kubernetes release since v1.4 and... Read More →
avatar for Steve Kuznetsov

Steve Kuznetsov

Software Engineer, Red Hat
Steve has been involved in open source and Kubernetes since 2014, joining the Testing SIG and becoming a co-lead in 2017.He has contributed to Kubernetes core since the 1.0 days but these days spends most of his focus on improving the testing infrastructure with the Testing SIG. Steve... Read More →



Wednesday December 12, 2018 1:45pm - 2:20pm
2 A/B

2:35pm

Deep Dive: Linkerd - Oliver Gould, Buoyant
The 2.0 release of Linkerd marks a substantial shift in both technology and purpose for the project. In this talk, we describe Linkerd’s evolution from 1.x’s “service mesh” focus on platform-level problems for platform operators, to a 2.x “end user” focus on giving Kubernetes users the ability to debug, inspect, and manipulate the traffic runtime of their services. We describe Linkerd’s shift from a Finagle, Netty, and JVM-based stack to one built on Rust and Go, how we incorporated lessons learned from the Conduit project, and what the future of Linkerd holds.

Speakers
avatar for Oliver Gould

Oliver Gould

CTO, Buoyant
Oliver Gould is a core maintainer of Linkerd, and is the co-founder and CTO of Buoyant, where he leads open source development efforts. Prior to Buoyant, he was a staff infrastructure engineer at Twitter, where he was the tech lead of Observability, Traffic, and Configuration & Coordination... Read More →


Wednesday December 12, 2018 2:35pm - 3:10pm
618-620

2:35pm

Deep Dive: Vitess - Dan Kozlowski & Sugu Sougoumarane, PlanetScale
Vitess has been a member of CNCF since early 2018, and is continuing to gain adoption as the Cloud-Native database solution. In this session, we are going show how Vitess can be used to never require a maintenance window.

Speakers
DK

Dan Kozlowski

Lead Engineer, PlanetScale
avatar for Sugu Sougoumarane

Sugu Sougoumarane

CTO, PlanetScale
Sugu is CTO at PlanetScale. He is also the lead developer and community leader of the Vitess open source project which he co-created at Youtube in 2010. Vitess has helped multiple companies scale MySQL massively. Prior to Vitess, he worked on various scaling and infrastructure projects... Read More →



Wednesday December 12, 2018 2:35pm - 3:10pm
3 A/B

2:35pm

Intro: gRPC-Web - Stanley Cheung & Wenbo Zhu, Google
Connect from Browsers using gRPC-Web We are delighted to introduce gRPC-Web, a cross-browser javascript library which allows developers to write web applications that connect to gRPC servers. In this intro talk, we will briefly talk about the gRPC-Web protocol and deployment model. We will also show a quick demo on how easy it is to start writing a browser application with gRPC-Web, Protobuf and Envoy. With gRPC-Web, you get a very familiar gRPC-style API compared to other languages supported by gRPC. We will also talk about how future holds and what we have planned in the roadmap.

Speakers
avatar for Stanley Cheung

Stanley Cheung

Senior Software Engineer, Google
Stanley is a software engineer from Google, who has worked on gRPC for the past 3 years. Stanley has mostly contributed to gRPC PHP and Browser JS libraries and is a big fan of open source software.
WZ

Wenbo Zhu

Software Engineer, Google Inc.
Wenbo Zhu is a software engineer at Google, where he is responsible for Google’s frontend networking frameworks. His current work involves building scalable and robust real-time messaging stacks for internet clients to interact with cloud services. He has also contributed to various... Read More →



Wednesday December 12, 2018 2:35pm - 3:10pm
2 A/B

2:35pm

Intro: Kubernetes IoT Edge WG – Cindy Xing, Huawei; Dejan Bosanac, Red Hat; Preston Holmes, Google; Steve Wong, VMware
This working group is focused on discussing, designing and documenting using Kubernetes for IoT and Edge applications. This session will start with the short introduction to the goals and tasks of this working group - with links if you want to get involved. Next, we’ll continue with the panel-style discussion with some Kubernetes users and active members of the group. The panel will cover mapping IoT and Edge use cases and to the Kubernetes architecture.

Speakers
avatar for Dejan Bosanac

Dejan Bosanac

Software Engineer, Red Hat
I'm an engineer at Red Hat with broad expertise in messaging and integration technologies. I’ve been an active member of open source communities for many years and a contributor to various projects. My latest interests revolve around developing open source IoT cloud platform so... Read More →
avatar for Preston Holmes

Preston Holmes

Head of IoT Solutions, Google Cloud
Preston Holmes is Head of IoT solutions for Google Cloud Platform. A recovering academic, Preston moved from fish brains to technology 15 years ago, becoming deeply involved in the world of Python open source web frameworks. As a member of his local hackerspace for the last 10 years... Read More →
avatar for Steven Wong

Steven Wong

Open Source Engineer, VMware
Steve Wong has been active in the Kubernetes and Apache Mesos communities since 2015. He is chair of the VMware SIG, and a co-organizer of the IoT and Edge Working Group on the Kubernetes project. He is a past speaker at KubeCon, MesosCon, Open Source Summit, SCALE, and meetups in... Read More →
avatar for Cindy Xing

Cindy Xing

Senior Cloud Software Architect 高级云软件架构师, Futurewei
Cindy Xing currently works at Futurewei as a Senior Cloud Software Architect.She focuses on building public Cloud Service infrastructure.Her interest area includes Kubernetes, container, Windows and Edge technologies.Before Futurewei, Cindy worked as a Senior software engineer and... Read More →



Wednesday December 12, 2018 2:35pm - 3:10pm
615-617

2:35pm

Intro: Prometheus – Richard "RichiH" Hartmann, SpaceNet & Frederic Branczyk, CoreOS
Join Prometheus maintainers to learn about the design, project goals and history of Prometheus. We will cover basic concepts of Prometheus to enable you to get an understanding of what all the hype is about. We will start at what time series are and what makes them different, look at our non-hierarchical data structure, our exposition format, and tie it all together with our query language, PromQL? As the end, you will have a solid understanding of Prometheus, enabling you to start using it in production.

Speakers
avatar for Frederic Branczyk

Frederic Branczyk

Principal Software Engineer, Red Hat
Frederic is an engineer at Red Hat (previously CoreOS) contributing to Prometheus and Kubernetes to build state of the art modern infrastructure and monitoring tools. He discovered his interest in monitoring tools and distributed systems in his previous jobs, where he used machine... Read More →
avatar for Richard Hartmann

Richard Hartmann

Swiss Army Chainsaw, SpaceNet
Richard "RichiH" Hartmann is a technical architect at SpaceNet, leading both a new datacenter build and monitoring. By night, he is involved in several FLOSS projects, including Debian and Prometheus, and organizing related conferences, including FOSDEM, DENOG, and Chaos Communication... Read More →



Wednesday December 12, 2018 2:35pm - 3:10pm
602-604

3:40pm

Deep Dive: containerd - Derek McGowan, Docker & Phil Estes, IBM Cloud
Come learn about the internals of containerd that make it extensible, efficient, and stable. We will discuss the gRPC APIs used to communicate with containerd, the smart client model, the pluggable runtime interface, and the provided components that enable pulling, unpacking, and running a container image. For container runtime providers, learn about the v2 runtime shim API and integrating your own runtime. For those with custom storage needs, learn about developing plugins to build your own snapshotter and content store. We will include examples from CRI, Docker, and Moby’s buildkit.

Speakers
avatar for Phil Estes

Phil Estes

Distinguished Engineer & CTO, Container Architecture Strategy, IBM
Phil is a Distinguished Engineer in the office of the CTO for IBM Cloud, guiding IBM's strategy around containers and Linux. Phil is a founding maintainer of the CNCF containerd runtime project, and participates in the Open Container Initiative (OCI) as a member of the Technical Oversight... Read More →
avatar for Derek McGowan

Derek McGowan

Docker, Software Engineer


Wednesday December 12, 2018 3:40pm - 4:15pm
615-617

3:40pm

Deep Dive: PM (Kubernetes) SIG - Ihor Dvoretskyi, Cloud Native Computing Foundation & Stephen Augustus, Red Hat
Kubernetes is one of the most high-velocity open source projects in the world, and one of the most unique features of this community project - that it has its own PM team and PM process. SIG-PM, originally established as a Product Management Group, today covers multiple aspects of Product, Program and Project Management of Kubernetes. In this session, the SIG-PM co-chairs will run a deep dive session on the SIG-PM community-wide responsibilities, day-to-day responsibilities, together with working on the real-world cases.

Speakers
avatar for Stephen Augustus

Stephen Augustus

Sr. Cloud Native Architect, VMware
Stephen Augustus is an active leader in the Kubernetes community. He currently serves as the Product Management Chair for Kubernetes, and a Chair for both the Release and Azure SIGs. Stephen's job at VMware includes driving meaningful interactions between internal teams and the Kubernetes... Read More →
avatar for Ihor Dvoretskyi

Ihor Dvoretskyi

Developer Advocate, CNCF
Ihor Dvoretskyi is a Developer Advocate at Cloud Native Computing Foundation, focused on Kubernetes-related efforts in the open source community.Ihor is a co-founder and co-lead of the Kubernetes Product Management Special Interest Group (SIG-PM), focused on enhancing Kubernetes as... Read More →



Wednesday December 12, 2018 3:40pm - 4:15pm
2 A/B

3:40pm

Deep Dive: Prometheus – Richard "RichiH" Hartmann, SpaceNet & Frederic Branczyk, CoreOS
Join Prometheus maintainers for an open Q&A about all the nitty gritty details of what makes Prometheus tick. We won't give a programme in advance on purpose; instead, we encourage you to shape our time together by pre-filling our form https://goo.gl/forms/jjn4s0YIfMS2M7N63 or asking during the session.

Speakers
avatar for Frederic Branczyk

Frederic Branczyk

Principal Software Engineer, Red Hat
Frederic is an engineer at Red Hat (previously CoreOS) contributing to Prometheus and Kubernetes to build state of the art modern infrastructure and monitoring tools. He discovered his interest in monitoring tools and distributed systems in his previous jobs, where he used machine... Read More →
avatar for Richard Hartmann

Richard Hartmann

Swiss Army Chainsaw, SpaceNet
Richard "RichiH" Hartmann is a technical architect at SpaceNet, leading both a new datacenter build and monitoring. By night, he is involved in several FLOSS projects, including Debian and Prometheus, and organizing related conferences, including FOSDEM, DENOG, and Chaos Communication... Read More →



Wednesday December 12, 2018 3:40pm - 4:15pm
602-604

3:40pm

Deep Dive: Telepresence - Adnan Abdulhussein, Bitnami & Rafael Schloming, Datawire
One of the challenges facing Telepresence is growing the contributor community. It’s a complex application that requires a good understanding of OS networking, VPNs, Kubernetes, and everything in between. We’ll kick off this meeting with a general architectural overview of Telepresence. We’ll talk about how we’ve managed the project to date, and our investments to make it easier. We want to then turn it over for an interactive discussion with participants to see what we can do to make it easier to contribute and grow the Telepresence community.

Speakers
avatar for Adnan Abdulhussein

Adnan Abdulhussein

Software Engineer, Bitnami
Adnan Abdulhussein is a Software Engineer at Bitnami, where he works on building tools to make apps easier to run on Kubernetes. He contributes to the Kubernetes community as a co-chair of SIG-Apps and a core maintainer of the Helm project. Adnan is passionate about cloud-native infrastructure... Read More →
avatar for Rafael Schloming

Rafael Schloming

Co-founder and Chief Architect, Datawire
Rafael Schloming is Co-founder and Chief Architect of Datawire. He is a globally recognized expert on messaging and distributed systems and a spec author of the AMQP specification. He has spoken on microservices at numerous technical conferences including ApacheCon, the O’Reilly... Read More →


Wednesday December 12, 2018 3:40pm - 4:15pm
3 A/B

3:40pm

Intro: Open Policy Agent - Torin Sandall, Styra
Join us for an introduction to the Open Policy Agent (OPA) project where Zach Abrahamson (Capital One) and Todd Ekenstam (Intuit) will present how their companies are using OPA to enforce fine-grained admission control policies across their Kubernetes clusters.

This session will have three parts:

1. Overview of the OPA project from Torin Sandall (co-founder & core maintainer)
2. User study: Capital One presented by Zach Abrahamson diving into why policy is important for managing risk & how they deploy OPA.
3. User study: Intuit presented by Todd Ekenstam diving into how they secure Kubernetes using OPA and deliver a multi-tenant platform within Intuit.


Speakers
avatar for Torin Sandall

Torin Sandall

Resource, Styra
Torin Sandall is a co-founder of the Open Policy Agent (OPA) project. Torin has spent 10 years as a software engineer working on large-scale distributed systems projects. Torin is a frequent speaker at events like KubeCon, DockerCon, Velocity, and more. Prior to working on OPA, Torin... Read More →



Wednesday December 12, 2018 3:40pm - 4:15pm
Tahoma 5 @ TCC The Conference Center (TCC) - Separate from WSCC building

4:30pm

Deep Dive: CNCF Serverless WG / CloudEvents - Clemens Vasters, Microsoft & Cathy Zhang, Huawei
This will be a follow-on to the intro - be a bit more of an in-depth discussion and more of a future looking session. It will also include a longer Q&A session allowing the audience to dig deeper on the technical details. More info later....

Speakers
avatar for Clemens Vasters

Clemens Vasters

Principal Architect, Azure Messaging, Microsoft
Clemens Vasters is Lead Architect in Microsoft’s Azure Messaging team that builds and operates a fleet of hyper-scale messaging services, including Event Grid, Service Bus, and Event Hubs. Clemens represents Microsoft in messaging standardization in OASIS (AMQP) and CNCF (CloudEvents... Read More →
avatar for Cathy Zhang

Cathy Zhang

Principal Architect, Huawei
Cathy has over 15 years of software design and development experience. She is currently a chief architect at Huawei’s USA Cloud Computing Lab. Her expertise includes Serverless Cloud Platform, Network Service and Virtualization, SDN, OpenStack, etc.. She is a key member of the Serverless... Read More →



Wednesday December 12, 2018 4:30pm - 5:05pm
Tahoma 5 @ TCC The Conference Center (TCC) - Separate from WSCC building

4:30pm

Deep Dive: CNCF Storage WG - Alex Chircop, StorageOS & Quinton Hoole, Huawei
The CNCF Storage Working Group has been exploring how different
storage technologies are used in cloud-native environments, and
has published a draft white paper on our findings.

In this deep dive session we'll present our work thus far, and host
detailed discussions and feedback covering topics including block stores, file
systems, object stores, key-value stores and databases, amongst
others. Common understandings of terminology, classifications and use
cases will be discussed. Different architectural approaches and
designs will be brainstormed and compared in terms of key attributes like
availability, scalability, performance, data consistency, durability,
fault tolerance, ease of development and operational complexity. We
seek to align the community on common understanding, terminology,
classifications and use cases.

Speakers
avatar for Alex Chircop

Alex Chircop

Founder and CTO, StorageOS
Alex is a founder and CTO of StorageOS, building software defined solutions for cloud native environments. Before embarking on the startup adventure he spent over 25 years engineering infrastructure platforms for companies like Nomura and Goldman Sachs.
avatar for Quinton Hoole

Quinton Hoole

Technical Vice President, Futurewei
https://www.linkedin.com/in/quintonhoole/YouTube me for previous presentations.CNCF TOC Member


Wednesday December 12, 2018 4:30pm - 5:05pm
615-617

4:30pm

Intro: CNCF Kubernetes Conformance WG - Dan Kohn, CNCF & Aaron Crickenberger, Google
Speakers
avatar for Aaron Crickenberger

Aaron Crickenberger

Senior Test Engineer, Google
Aaron has participated in open source since 2007, cloud since 2009, and Kubernetes since 2015. He co-founded the Kubernetes Testing SIG, and has served on the Kubernetes Steering Committee since its inception in 2017. He has participated in every Kubernetes release since v1.4 and... Read More →
avatar for Dan Kohn

Dan Kohn

Executive Director, CNCF
Dan is Executive Director of the Cloud Native Computing Foundation, which sustains and integrates open source technologies like Kubernetes and Prometheus. He also helped create the Linux Foundation's Core Infrastructure Initiative as an industry-wide response to the security vulnerabilities demonstrated by Heartbleed.He previously served as CTO of several startups, including Spreemo, a healthcare marketplace, and Shopbeam, a shoppable ads company. Earlier, he was a general partner at Skymoon Ventures, a seed-stage... Read More →



Wednesday December 12, 2018 4:30pm - 5:05pm
2 A/B

4:30pm

Intro: Jaeger - Yuri Shkuro, Uber & Pavol Loffay, Red Hat
This session is an introduction to Jaeger and distributed tracing. We will do a short demo of the current Jaeger features, talk about the roadmap for the upcoming year, and finish with a Q&A. After this session the attendees should better understand how Jaeger fits in the observability space for cloud native applications. For more information on the project everybody is welcome to attend the Jaeger Deep Dive Session.

Speakers
avatar for Pavol Loffay

Pavol Loffay

Software Engineer, Red Hat
avatar for Yuri Shkuro

Yuri Shkuro

Software Engineer, Uber Technologies
Yuri Shkuro is a software engineer at Uber Technologies, working on distributed tracing, observability, reliability, and performance problems; author of the book ["Mastering Distributed Tracing"](https://www.shkuro.com/books/2019-mastering-distributed-tracing/); creator of Jaeger... Read More →



Wednesday December 12, 2018 4:30pm - 5:05pm
618-620

4:30pm

Intro: Scheduling SIG – Da Ma, Huawei
In the past years, sig-scheduling incubated four projects to meet different scheduling scenario, e.g. batch workload, resource rebalance. We'd like to give an introduction for those incubator projects, so please join us for understanding of them. In this presentation, we'll give an introduction on its background, user case, tutorial and so on. We will also cover the feature interaction with kube-scheduler for better resource utilization. This session is most useful for cluster admins or those who want to start contributing to Kubernetes scheduler.

Speakers
avatar for Klaus Ma

Klaus Ma

Expert, Huawei
Kubernetes Maintainer, SIG-Scheduling Co-Leader, CNCF Research User Group Tech Lead, Volcano/kube-batch creator. Jilin University master’s degree, majoring in grid computing and distributed system. After graduation, he focus on resource management, resource scheduling in distributed... Read More →



Wednesday December 12, 2018 4:30pm - 5:05pm
3 A/B
 
Thursday, December 13
 

10:50am

Deep Dive: Auth SIG - Tim Allclair & Jordan Liggitt, Google
SIG Auth is responsible for the design, implementation, and maintenance of features in Kubernetes that control and protect access to the API and other core components. In this session, we'll discuss designs for a couple of the features currently in development.

Speakers
avatar for Tim Allclair

Tim Allclair

Google, Software Engineer
Tim Allclair joined the Kubernetes project with Google just after the 1.0 launch in 2015. He co-chairs sig-auth, is an active sig-node contributor, and a member of the Kubernetes Product Security Team (responsible for responding to vulnerabilities in Kubernetes). His most recent charter... Read More →
avatar for Jordan Liggitt

Jordan Liggitt

Staff Software Engineer, Google
Jordan Liggitt is a staff software engineer at Google, and helps lead Kubernetes authentication, authorization, and API server efforts.



Thursday December 13, 2018 10:50am - 11:25am
2 A/B

10:50am

Deep Dive: CLI SIG - Maciej Szulik & Juan Vallejo, Red Hat
The "deep dive" session will focus on the vision and strategy for the "kubectl" project. There have been multiple efforts to evolve "kubectl" to be more de-coupled and maintainable. We will report the progress of these efforts. We will leave some of the time for Q&A.

Speakers
avatar for Maciej Szulik

Maciej Szulik

Software Engineer, Red Hat
Maciej is a passionate developer with over 10 years of experience in many languages. He's working on OpenShift and Kubernetes for Red Hat. In his free time he enjoys hacking on bugs.python.org and CPython's IMAP library. He's a frequent speaker at various events and meet ups, including... Read More →
avatar for Juan Vallejo

Juan Vallejo

Software Engineer, Red Hat
Juan is an open-source developer, working on OpenShift and Kubernetes for Red Hat. In his free time, he enjoys working on open source projects and engaging with the community.



Thursday December 13, 2018 10:50am - 11:25am
Tahoma 5 @ TCC The Conference Center (TCC) - Separate from WSCC building

10:50am

Deep Dive: Cloud Provider SIG - Chris Hoge, OpenStack Foundation & Jago Macleod, Google
The long term goal of SIG Cloud Provider is to promote a vendor neutral ecosystem for our community. New vendors providing support for Kubernetes should feel equally empowered to do so as any of today’s existing cloud providers. More importantly, SIG Cloud Provider is focused on ensuring a consistent and high-quality user experience across providers. The SIG acts as a central group for developing the Kubernetes project in a way that ensures all providers share common privileges and responsibilities. As Kubernetes transitions from building all binaries necessary to create and run a Kubernetes cluster, to a new world in which Cloud Providers must supply some additional artifacts (Cloud Controller Manager, e.g.) to most effectively run, one area of concern is around how to manage the build and release process effectively. This deep dive session will be a working session to brainstorm how to manage this effectively. Questions for consideration include: - whether and how to include Cloud Provider e2e tests in the suite of release blocking tests for OSS Kubernetes - how to communicate to end users whether they need and how to obtain additional artifacts - how to manage optional addons and extensions in the validation of Kubernetes (e.g., CoreDNS on Kubernetes on N Cloud Providers), when those ecosystem projects evolve on their own release schedules. Session will begin with suggesting and voting on issues of highest level of interest and urgency, and then open discussion on 3 - 5 topics. Recommended for those working on ecosystem projects, those interested in build and release, and those currently working on Cloud Provider implementations.

Speakers
avatar for Chris Hoge

Chris Hoge

Senior Technical Marketing Manager, GitLab
Chris Hoge was the Senior Strategic Program Manager for the OpenStack Foundation, where he focused on interoperability testing and containers. He’s also active in the Kubernetes community as a co-lead on both the OpenStack and Cloud Provider SIGs. Previously he worked on cloud automation... Read More →
JM

Jago Macleod

Engineering Director, Kubernetes & GKE, Google
Jago Macleod is an Engineering Director at Google, where he leads much of the Kubernetes and Google Kubernetes Engine (GKE) team. He also works closely with GKE’s largest customers, sophisticated Kubernetes users pushing the limits in every dimension. Prior to working at Google... Read More →



Thursday December 13, 2018 10:50am - 11:25am
3 A/B

10:50am

Deep Dive: Jaeger - Pavol Loffay, Red Hat & Yuri Shkuro, Uber
This session is dedicated to an in-depth understanding of the Jaeger project. We will give a short demo of the recently added features, talk about various topics including the architecture, adaptive sampling, multi-tenancy, and configuration, and review the roadmap for the upcoming year. After this session the attendees should better understand the Jaeger architecture and be ready to make contributions to the project.

Speakers
avatar for Pavol Loffay

Pavol Loffay

Software Engineer, Red Hat
avatar for Yuri Shkuro

Yuri Shkuro

Software Engineer, Uber Technologies
Yuri Shkuro is a software engineer at Uber Technologies, working on distributed tracing, observability, reliability, and performance problems; author of the book ["Mastering Distributed Tracing"](https://www.shkuro.com/books/2019-mastering-distributed-tracing/); creator of Jaeger... Read More →



Thursday December 13, 2018 10:50am - 11:25am
615-617

10:50am

Deep Dive: Kubernetes SIG Multicluster - Irfan Ur Rehman, Huawei & Paul Morie, Red Hat
Multi-cluster Federation Deep Dive: Multi-cluster Federation is an API and control plane that actively manages multiple Kubernetes clusters and applications in those clusters. Federation v1's API mirrored the Kubernetes API directly, using annotations to achieve necessary multi-cluster extensions. Federation v2.0, now in Alpha, has it's own Multi-cluster aware API, and a more and a more customizable control plane composed of lower level re-usable building blocks. In this deep dive we will discuss the existing API and control plane architecture, and it's primary target use cases. But most of all we would like to solicit input on what other use potential cases exist, and what additions or amendments might be required to make Multicluster Federation even more generally useful for your real-world stuff.

Speakers
PM

Paul Morie

Principal Engineer, Red Hat
Paul is a Principal Engineer at Red Hat and a Kubernetes maintainer. He's been working on Kubernetes since 2014, concentrating at different points on application development primitives, service catalog, container security, and multicluster problems. Before Kubernetes, he worked on... Read More →
IU

Irfan Ur Rehman

Senior Engineer, Turbonomic
Irfan is a senior engineer associated with the Advanced Engineering group at Turbonomic. In his current role he is tasked with drafting multi cluster capabilities for Turbonomic’s analytics platform. He has also been associated with SIG Multicluster, particularly Kubernetes Cluster... Read More →



Thursday December 13, 2018 10:50am - 11:25am
618-620

10:50am

K8s Conformance Working Session: Supporting Multiple Environments - Dan Kohn, CNCF
The K8s Conformance program and test suite will play an integral role in ensuring that customers have a consistent experience when porting their workloads between K8s providers. However, not all environments in which K8s will be hosted will be identical - either due to hardware differences, or the use of optional features.

The question before the K8s Conformance WG is how to deal with these variants with respect to the Conformance Certification program. Several options have been put forward. This session will focus on trying to develop a generic solution, while using Windows as our first concrete use-case to address. This session is not introductory and will be more of a brainstorming session for interested parties.

Speakers
avatar for Dan Kohn

Dan Kohn

Executive Director, CNCF
Dan is Executive Director of the Cloud Native Computing Foundation, which sustains and integrates open source technologies like Kubernetes and Prometheus. He also helped create the Linux Foundation's Core Infrastructure Initiative as an industry-wide response to the security vulnerabilities demonstrated by Heartbleed.He previously served as CTO of several startups, including Spreemo, a healthcare marketplace, and Shopbeam, a shoppable ads company. Earlier, he was a general partner at Skymoon Ventures, a seed-stage... Read More →


Thursday December 13, 2018 10:50am - 12:15pm
Yakima 1 @ TCC The Conference Center (TCC) - Separate from WSCC building

11:40am

Deep Dive: API Machinery SIG - Stefan Schimanski, Red Hat & Daniel Smith, Google
This Deep Dives will cover the recent developments of Sig API Machinery. This includes: - CustomResourceDefinition versioning, conversion, pruning and defaulting and the road towards GA - server-side apply and the implications for controller developers Both topics are essential for everybody building extension APIs on-top of Kubernetes. The first is about evolving CRD based APIs from v1alpha1 to v1beta1 to stable v1. The second is about multiple actors changing API objects with apply-like semantics. We will have the chance to dive into the topics and to answer technical questions around them.

Speakers
avatar for Stefan Schimanski

Stefan Schimanski

Senior Software Engineer, Red Hat
Stefan is a Principal Software Developer at Red Hat working on Kubernetes and OpenShift, with a focus on API machinery, extension points and developer tools as part of Sig API Machinery. He is one of the top-3 reviewers in the project (number of reviews). Stefan is a 2nd time GoogleSummer... Read More →
avatar for Daniel Smith

Daniel Smith

Staff Software Engineer, Google
Daniel has been working on Kubernetes since before it was open sourced, contributing enough in the early days that he’s still one of the top contributors overall. Currently, he is co-Chair and co-TL of the Kubernetes API Machinery SIG, and TL of the corresponding Google team. Before... Read More →


Thursday December 13, 2018 11:40am - 12:15pm
615-617

11:40am

Deep Dive: Apps SIG - Matt Farina, Samsung SDS & Adnan Abdulhussein, Bitnami
Kubernetes SIG Apps covers developing, deploying, and operating applications on Kubernetes with a focus on the application developer and application operator experience. In this deep dive we will look at the general experience for application developers and operators along with specifics of the Workloads API and Application CRD. The topics discussed will be based on the desires of those in attendance and the conversation will go where attendees would like it to go.

Speakers
avatar for Adnan Abdulhussein

Adnan Abdulhussein

Software Engineer, Bitnami
Adnan Abdulhussein is a Software Engineer at Bitnami, where he works on building tools to make apps easier to run on Kubernetes. He contributes to the Kubernetes community as a co-chair of SIG-Apps and a core maintainer of the Helm project. Adnan is passionate about cloud-native infrastructure... Read More →
avatar for Matt Farina

Matt Farina

Senior Staff Engineer, Samsung
Matt works on the Cloud Native Computing Team at Samsung SDS where he focuses on cloud native applications and open source software. He is a published author, speaker, and regular contributor to open source. He is a maintainer for multiple open source projects, including Helm, and... Read More →



Thursday December 13, 2018 11:40am - 12:15pm
Tahoma 5 @ TCC The Conference Center (TCC) - Separate from WSCC building

11:40am

Deep Dive: Fluent Bit - Eduardo Silva & Masahiro Nakagawa, Treasure Data
Fluent Bit is a sub-project of Fluentd Ecosystem, considered as a lightweight and high-performance log-processor and forwarder.  On this session we will dig into its internals and special features available for Kubernetes and cloud-native environments in general. Everybody interested in Logging is welcome to join us.

Speakers
MN

Masahiro Nakagawa

Principal Engineer, Arm Treasure Data
Fluentd maintainer
avatar for Eduardo Silva

Eduardo Silva

Principal Engineer, Arm Treasure Data
Eduardo is a Principal Engineer at ARM / Treasure Data. He currently leads the efforts to make logging and data processing more friendly and scalable in Embedded and Containerized systems such as Kubernetes. Maintainer of Fluent Bit, a Fluentd open source sub-project.


Thursday December 13, 2018 11:40am - 12:15pm
602-604

11:40am

Deep Dive: Kubernetes Policy WG - Zhipeng Huang, Huawei
In this session, we will cover the following topics:

- Overview of the WG and our running list item
- Unified policy format
- Multitenancy network policy restriction use case
- Open forums for next step

Speakers
avatar for Zhipeng Huang

Zhipeng Huang

Principle Engineer, Huawei
Zhipeng Huang currently serve as open source operation manager for Huawei. Zhipeng have been involved with various major open source communities and is now the PTL of OpenStack Cyborg project, co-chair of OpenStack Public Cloud WG, and co-lead of the Kubernetes Policy WG.Zhipeng Huang... Read More →


Thursday December 13, 2018 11:40am - 12:15pm
2 A/B

11:40am

Deep Dive: Open Policy Agent - Torin Sandall, Styra
Join us for a deep dive on the Open Policy Agent (OPA) project where we'll cover how OPA works as well as cool new features like:

- Partial evaluation for data filtering in SQL & Elasticsearch
- Rego -> WebAssembly compilation for edge and serverless use cases

If you want to learn more about OPA and where the project is headed, this session is for you!


Speakers
avatar for Torin Sandall

Torin Sandall

Resource, Styra
Torin Sandall is a co-founder of the Open Policy Agent (OPA) project. Torin has spent 10 years as a software engineer working on large-scale distributed systems projects. Torin is a frequent speaker at events like KubeCon, DockerCon, Velocity, and more. Prior to working on OPA, Torin... Read More →



Thursday December 13, 2018 11:40am - 12:15pm
3 A/B

11:40am

Deep Dive: Rook - Travis Nielsen, Red Hat
The Rook operator implements custom resource definitions (CRDs) to express desired state of storage providers for Kubernetes. This deep dive will review the framework Rook provides to integrate the storage providers with an operator and CRDs. As an example, details of the Ceph operator will be shown, including how it builds on the Rook framework and how Ceph’s specific orchestration needs are met. The Ceph mons require special handling to stay in quorum and handle failover. Ceph OSDs require several stages of discovery and provisioning before the daemons are started. The Ceph mgr runs an active and standby daemon for high availability. For object storage, Rook creates all the pools and starts the rgw daemons needed. For a shared file system, Rook creates the pools and starts the MDS daemon with a standby. These and other challenges with the Ceph daemons will be discussed.

Speakers
avatar for Travis Nielsen

Travis Nielsen

Red Hat, Senior Principal Software Engineer
Travis Nielsen is a Senior Principal Software Engineer at Red Hat where he works on “the future of storage” as part of the Ceph distributed storage system team. Before joining Red Hat, Travis helped found the Rook project as a Principal Software Engineer at Quantum Corporation... Read More →



Thursday December 13, 2018 11:40am - 12:15pm
618-620

1:45pm

Deep Dive: Cluster Lifecycle SIG (Kubeadm) – Timothy St. Clair & Liz Frost, Heptio
The Cluster Lifecycle SIG is the Special Interest Group that is responsible for building the user experience for deploying and upgrading Kubernetes clusters. Our mission is examining how we should change Kubernetes to make it easier to operate.

In this deep dive, we will examine how the Cluster API simplifies the cluster management experience for cluster operators by enabling consistent machine management across environments, and bringing declarative upgrades to Kubernetes clusters.

Speakers
avatar for Timothy St. Clair

Timothy St. Clair

Senior Staff Engineer, VMware
Timothy St. Clair is a Staff Software Engineer at Heptio and is a core contributor to the Kubernetes project, a Steering Committee member, and a lead on SIG-Cluster-Lifecycle. Timothy has worked on the development and integration of various open source distributed systems projects... Read More →
avatar for Liz Frost

Liz Frost

Software Engineer, Heptio
Liz is a software engineer, diversity advocate, and fan of colourful ponies. She works at Heptio, previously of Heroku and Activision, and has previously spoken at DevOpsDays Boston and AlterConf Portland. She lives in New York City with her chosen family and extremely fluffy dog... Read More →



Thursday December 13, 2018 1:45pm - 2:20pm
618-620

1:45pm

Deep Dive: CNI - Bryan Boreham, Weaveworks & Dan Williams, Red Hat
CNI, the Container Network Interface, is a small but critical piece of infrastructure linking runtimes such as Kubernetes and CloudFoundry to dozens of different container network implementations.
This session is aimed at implementers of network plugins and runtimes using CNI, as well as anyone interested in contributing to the project or becoming a maintainer. We will recap recent changes, look at the roadmap to 1.0, and have plenty of time for discussion and Q&A.

Speakers
avatar for Bryan Boreham

Bryan Boreham

Director of Engineering, Weaveworks
Bryan is Director of Engineering at Weaveworks, delivering deployment, observability and monitoring for containers and microservices. Previously, Bryan has worked on many kinds of systems including financial trading, factory control and cake-shop. Outside of work he is a father... Read More →
avatar for Dan Williams

Dan Williams

Principal Software Engineer, Red Hat
Daniel C. B. Williams is a Principal Software Engineer at Red Hat, with a focus on container networking and orchestration, specifically with OpenShift, Kubernetes, CNI, and related projects. As co-lead of the Kubernetes SIG Network group, lead of the Network Plumbing Working Group... Read More →



Thursday December 13, 2018 1:45pm - 2:20pm
3 A/B

1:45pm

Deep Dive: Container Identity WG - Greg Castle & Michael Danese, Google
Over the past year the Container Identity working group has been working on a number of initiatives relating to identity in Kubernetes. These include providing a mechanism to issue scoped JWTs that can be externally validated which improves the security of identity integrations using Kubernetes service accounts, such as Hashicorp Vault. We’ve also made significant progress in providing a new mechanism to issue and mount service account identities inside the cluster that addresses a number of security and scalability issues with existing service accounts. Finally we’ve also enabled new identity integrations by exposing OIDC functionality from the Kubernetes cluster. We’ll discuss these changes, how they can be used today, and where we are headed next.

Speakers
avatar for Greg Castle

Greg Castle

Kubernetes/GKE Security Tech Lead, Google
Greg is the tech lead for the Kubernetes and Google Kubernetes Engine (GKE) security team at Google, and is a regular at SIG-Auth. Greg has 15 years of experience in a number of security roles including product security, penetration testing, incident response, platform hardening... Read More →
avatar for Mike Danese

Mike Danese

Software Engineer, Google
Mike is a software engineer at Google. He has worked on Kubernetes and GKE for over four years and is currently the lead of the GKE Identity Team. He is a chair and TL of the Kubernetes Auth Special Interest Group. He develops and maintains authentication infrastructure in Kubernetes... Read More →



Thursday December 13, 2018 1:45pm - 2:20pm
615-617

1:45pm

Deep Dive: IBMCloud SIG - Sahdev Zala & Richard Theis, IBM
The presentation will cover an overview of the SIG-IBMCloud and highlights of the SIG activities. It will provide details of how the SIG and IBMCloud contribute to the upstream work in various areas like scalability, networking, cloud registry, Helm and SIG App. We will also provide updates on the cloud provider and near-term roadmap for the SIG. The presentation will provide in depth coverage of SIG-IBMCloud activities, walk through, user stories, SIG upstream contributions to the Kubernetes and related projects. The details are still being worked on and we will revise with more details later.

Speakers
avatar for Richard Theis

Richard Theis

IBM, Senior Software Engineer
Richard Theis is a Senior Software Engineer in the IBM Cloud division. In his current role, Richard leads Kubernetes update development and support for IBM Cloud Kubernetes Service. He is a co-chair of the Kubernetes IBM Cloud SIG.
avatar for Sahdev P. Zala

Sahdev P. Zala

Senior Software Engineer, IBM
Sahdev P. Zala is a Senior Software Engineer in the IBM Digital Business Group Open Technology division. In his current role, Sahdev is focused on contributing to the Kubernetes and etcd upstream development. He is a member of Kubernetes and etcd-io github organization. He is also... Read More →



Thursday December 13, 2018 1:45pm - 2:20pm
Yakima 1 @ TCC The Conference Center (TCC) - Separate from WSCC building

1:45pm

Deep Dive: Service Catalog SIG - Carolyn Van Slyck, Microsoft Azure & Jonathan Berkhahn, IBM
Join us for a deep dive into how the Kubernetes Service Catalog works under the covers. Starting with a quick overview of Service Catalog and some of the challenges we faced while bridging the different processing models between Kubernetes and the Open Service Broker API, we will then look at more advanced scenarios and new features from the perspective of cluster operators, application developers and helm chart authors. You’ll come away with a solid understanding of how Service Catalog works and recommended workflows and practices for using it. Finally we would love for anyone considering contributing to stop by and get an introduction to all the parts of Service Catalog, meet the maintainers and learn how to become a contributor!

Speakers
JB

Jonathan Berkhahn

Open Source Contributor, IBM
Jonathan Berkhahn is an open source contributor working on behalf of IBM. He co-chairs SIG Service Catalog and is a Member of the Open Service Broker API working group. He also manages his own open source project Blockhead, an OSB broker for provision blockchain nodes for use by cloud... Read More →
avatar for Carolyn Van Slyck

Carolyn Van Slyck

Software Engineer, Microsoft
Carolyn is a software developer based in the wilds of suburban Chicago, working remote on the Microsoft Azure team. Her passion is developer tools, and building vibrant inclusive open-source communities around them.Carolyn is a maintainer for Kubernetes Service Catalog and the GoMods... Read More →



Thursday December 13, 2018 1:45pm - 2:20pm
2 A/B

1:45pm

Deep Dive: SPIFFE - Emiliano Bernbaum & Andrew Harding, Scytale
SPIFFE (Secure Production Infrastructure for Everyone) and SPIRE are two of the newer projects to join the CNCF. These projects build on designs first championed at Google, Twitter and elsewhere to provide robust authentication and trust between disparate micro-services in heterogeneous operating environments.

This talk will expand on concepts introduced during the SPIFFE 101 session to explore in detail how SPIRE performs attestation to workloads in diverse infrastructure and middleware settings, how it leans on different secrets storage backends and how PKI material is automatically delivered to a node and workload. The talk also will cover how these capabilities can be extended and customized through SPIRE’s plugin framework.

In this session, we will demo two (2) things, specifically:

1) How SPIFFE can be used to secure communication between two workloads running on different Kubernetes clusters running on different clouds. For a twist, we'll demo this for both direct connections as well as those going through load balancers.

2) How to federate SPIRE deployments in different trust domains. This demo will also showcase how we federate JSON Web Tokens (JWT) to facilitate cross-cloud communication.


Speakers
avatar for Emiliano Berenbaum

Emiliano Berenbaum

CTO, Scytale
Before co-founding Scytale, Emiliano was a principal engineer at Splunk, where he helped lead the engineering effort to convert Splunk into an entirely SaaS offering and platform. Previously, he was Okta’s founding employee, where he worked on all aspects of the SaaS offering, culminating... Read More →
avatar for Andrew Harding

Andrew Harding

Software Engineer, Scytale
Andrew is a software engineer who loves his craft. He enjoys building all sorts of software but has a soft spot for security, in particular, identity management. Before joining Scytale, Andrew worked on a wide variety of services, infrastructure, and tooling across cloud and device... Read More →



Thursday December 13, 2018 1:45pm - 2:20pm
Tahoma 5 @ TCC The Conference Center (TCC) - Separate from WSCC building

2:35pm

Deep Dive: Autoscaling SIG - Solly Ross, Google & Michael Hausenblas, Red Hat
Every had a question about the nitty-gritty details of the horizontal pod autoscaler? Want to weigh in on the future of the cluster autoscaler? Curious about the ongoing work on the vertical pod autoscaler? If so, come to the SIG Autoscaling Deep Dive. We'll be discussing future and ongoing developments in all three autoscaling components, as well as answer questions and concerns about their functionality. While the session will be centered around areas that attendees wish to discuss, potential topics include algorithmic improvements to the HPA, the path to stabilization of HPA v2, and cluster autoscaler integration with the cluster API.

Speakers
avatar for Michael Hausenblas

Michael Hausenblas

Developer Advocate, AWS
Michael is a Developer Advocate at AWS where he helps appops to build and operate cloud native apps. His background is in large-scale data processing and container orchestration and he's experienced in advocacy and standardization at W3C and IETF. Before AWS, Michael worked at Red... Read More →
avatar for Solly Ross

Solly Ross

Software Engineer, Google
Solly is one of the leads of the Kubebuilder project, and works on Kubernetes at Google with a focus on custom controller tooling. Solly previously worked on metrics and autoscaling, and has been hacking on various parts of Kubernetes since Kubernetes 1.2. When not writing PRs or... Read More →


Thursday December 13, 2018 2:35pm - 3:10pm
602-604

2:35pm

Deep Dive: Azure SIG – Khaled (Kal) Henidak , Microsoft & Stephen Augustus, Red Hat
In the SIG Azure Deep Dive, we’re going to tell you all about why SIG Azure exists and the team behind managing it. From there, we’ll talk about what’s happened over the last few releases, Kubernetes 1.11 and Kubernetes 1.12, as well as some of what’s planned for Kubernetes 1.13. Additionally, we’ll glimpse into Azure support of multiple extension points e.g., CSI, CNI, CRI. Afterwards, we’ll have a quick demo of provisioning Kubernetes on Azure as well as a secret demo from our mad scientist and SIG Azure Technical Lead, Kal! Finally, and most importantly, we’ll talk all about some of the best ways to get involved with SIG Azure and all of the forums that we’re communicating on!

Speakers
avatar for Stephen Augustus

Stephen Augustus

Sr. Cloud Native Architect, VMware
Stephen Augustus is an active leader in the Kubernetes community. He currently serves as the Product Management Chair for Kubernetes, and a Chair for both the Release and Azure SIGs. Stephen's job at VMware includes driving meaningful interactions between internal teams and the Kubernetes... Read More →



Thursday December 13, 2018 2:35pm - 3:10pm
3 A/B

2:35pm

Deep Dive: Cloud Native Buildpacks - Terence Lee & Joe Kutner, Salesforce Heroku
Learn why you need a buildpack and how to create one. We'll write a simple Python buildpack we can use to build an image from a Django app. We'll take advantage of caching and Docker layers to speed up rebuilds and deploys. Unlike Dockerfiles, buildpacks are composable. We'll create a build pipeline with our Python buildpack and the Node.js buildpack, which we'll use to prepare asset bundles. 

Finally, you'll learn how to rebase your application layers on a new image. This allows operators to efficiently handle the delivery of OS-level dependency upgrades.

Speakers
avatar for Joe Kutner

Joe Kutner

Architect, Salesforce Heroku
Joe owns the Java Experience on the Salesforce Heroku cloud. He's the author of several titles from the Pragmatic Bookshelf, including The Healthy Programmer.
TL

Terence Lee

Principle Engineer, Salesforce Heroku
Terence co-created buildpacks in 2011 at Heroku. Since then, he's owned the Ruby experience which has lead to work as the maintainer of Bundler, joining the Ruby core team, and the Ruby security team. Now, he works across all 6 supported languages on the platform.


Thursday December 13, 2018 2:35pm - 3:10pm
Tahoma 5 @ TCC The Conference Center (TCC) - Separate from WSCC building

2:35pm

Deep Dive: Cluster Lifecycle SIG (Cluster API) - Robert Bailey, Google & David E. Watson, Samsung
The Cluster Lifecycle SIG is the Special Interest Group that is responsible for building the user experience for deploying and upgrading Kubernetes clusters. Our mission is examining how we should change Kubernetes to make it easier to operate.

In this deep dive, we will examine how the Cluster API simplifies the cluster management experience for cluster operators by enabling consistent machine management across environments, and bringing declarative upgrades to Kubernetes clusters.

Speakers
avatar for Robert Bailey

Robert Bailey

Staff Software Engineer, Google
Robert is part of Google's Cloud Gaming team working on open source gaming infrastructure projects founded by Google such as Agones and Open Match. He was previously a lead for the Cluster Lifecycle SIG, worked on Kubernetes for more than 4 years, and was one of the founding members... Read More →
avatar for David E Watson

David E Watson

Software Engineer, Individual
David has been a part of the Kubernetes community for three years, focusing on scalability, reliability, and ease of use. At Samsung he works on enabling technologies, e.g. control-plane engineering and hybrid clouds, most recently by leading the development of an SSH provider for... Read More →



Thursday December 13, 2018 2:35pm - 3:10pm
618-620

2:35pm

Deep Dive: Kubernetes IoT Edge WG – Cindy Xing, Huawei; Dejan Bosanac, Red Hat; Preston Holmes, Google; Steve Wong, VMware
What are the workloads that are unique or common to running Kubernetes on the edge? How do they take advantage of existing Kubernetes features, or require refinements and new capabilities? We’ll dive into the use cases, functional requirements and unique challenges of deploying IoT and Edge workloads on Kubernetes and discuss the technical challenges involved today. With the goal of addressing the challenges, we’ll have a panel discussion to share views and ideas on potential platform improvements. The session will close with audience participation and Q&A.

Speakers
avatar for Dejan Bosanac

Dejan Bosanac

Software Engineer, Red Hat
I'm an engineer at Red Hat with broad expertise in messaging and integration technologies. I’ve been an active member of open source communities for many years and a contributor to various projects. My latest interests revolve around developing open source IoT cloud platform so... Read More →
avatar for Preston Holmes

Preston Holmes

Head of IoT Solutions, Google Cloud
Preston Holmes is Head of IoT solutions for Google Cloud Platform. A recovering academic, Preston moved from fish brains to technology 15 years ago, becoming deeply involved in the world of Python open source web frameworks. As a member of his local hackerspace for the last 10 years... Read More →
avatar for Steven Wong

Steven Wong

Open Source Engineer, VMware
Steve Wong has been active in the Kubernetes and Apache Mesos communities since 2015. He is chair of the VMware SIG, and a co-organizer of the IoT and Edge Working Group on the Kubernetes project. He is a past speaker at KubeCon, MesosCon, Open Source Summit, SCALE, and meetups in... Read More →
avatar for Cindy Xing

Cindy Xing

Senior Cloud Software Architect 高级云软件架构师, Futurewei
Cindy Xing currently works at Futurewei as a Senior Cloud Software Architect.She focuses on building public Cloud Service infrastructure.Her interest area includes Kubernetes, container, Windows and Edge technologies.Before Futurewei, Cindy worked as a Senior software engineer and... Read More →



Thursday December 13, 2018 2:35pm - 3:10pm
615-617

2:35pm

Deep Dive: TUF - Justin Cappos, NYU & Trishank Kuppusamy, Datadog
When VCS systems, build pipelines, or signing servers are are compromised, attackers get to distribute malicious versions to millions of unsuspecting users. We present how Datadog used TUF and in-toto to develop, to the best of our knowledge, the industry’s first end-to-end verified pipeline that automatically builds integrations for the Datadog agent. That is, even if this pipeline is compromised, users should not be able to install malware. We will show a demonstration of our pipeline in production being used to protect users of the Datadog agent, and describe how you can use TUF + in-toto secure your own pipeline.

Speakers
avatar for Justin Cappos

Justin Cappos

Professor, NYU
Justin Cappos is a professor in the Computer Science and Engineering department at New York University, who strives to provide service to society through technology. Justin's research philosophy focuses on solving real world security problems in practice. He and his students often... Read More →
avatar for Trishank Kuppusamy

Trishank Kuppusamy

Chief Security Solutions Engineer, Datadog
Helped to research and develop The Update Framework (TUF), and Uptane.



Thursday December 13, 2018 2:35pm - 3:10pm
2 A/B

3:40pm

Deep Dive: CoreDNS - Michael Grosser, Okkur Labs & John Belamaric, Google
CoreDNS is a DNS server written in Go. It can be used in a multitude of environments because of its flexibility. The flexibility is due to CoreDNS’ unique plugin-based architecture: if some functionality is not provided out of the box, you can add it by writing a plugin. In this deep dive session, we take a detailed look at the plugin system of CoreDNS. We walk through the code base of a simple plugin which sync up Kubernetes deployment with services outside of the Kubernetes cluster. This plugin showcases the ease of adding new functionalities to CoreDNS, which is very valuable for DevOps in a hybrid and complicated environment.

Speakers
avatar for John Belamaric

John Belamaric

Senior Staff Software Engineer, Google
John Belamaric is an experienced software engineer and architect with over 20 years of software design and development experience. He works on the Google Cloud team, focused on Kubernetes and GKE. He is also a core maintainer of CoreDNS, a CNCF project that provides dynamic, DNS-based... Read More →
avatar for Michael Grosser

Michael Grosser

Founder, Okkur Labs
Michael Grosser has contributed to Kubernetes and CoreDNS for some time. As a Google Developer Expert for Kubernetes and GCP he is excited about technology and reading DNS RFCs. He is the founder of Okkur Labs and Rekkur Solutions. Okkur Labs is an open source lab researching, contributing... Read More →



Thursday December 13, 2018 3:40pm - 4:15pm
618-620

3:40pm

Deep Dive: Falco - Mark Stemm, Sysdig
In any Cloud Native architecture, there’s a seemingly endless stream of events that happen at each layer. These events can be used to detect abnormal activity and possible security incidents, as well as providing an audit trail of activity. In this talk, we’ll cover how we extended Falco to ingest events beyond just host system calls, such as Kubernetes audit events or even application level events. We will also show how to create Falco rules to detect behaviors in these new event streams. We show how we implemented Kubernetes audit events in Falco, and how to configure the event stream. Finally, we will cover how to create additional event streams leveraging the generic implementation Falco provides. Attendees will gain a deep understanding of Falco’s architecture, and how it custom Falco for additional events sources. 

Speakers
avatar for Mark Stemm

Mark Stemm

Senior Software Engineer, Sysdig
Mark is a Senior Software Engineer at Sysdig. He has a B.S. in Math/CS from Carnegie Mellon University and a M.S./Ph.D. in Computer Science from the University of California, Berkeley. He's worked at Fast Forward Networks on the first generation of internet-based live video broadcasting... Read More →



Thursday December 13, 2018 3:40pm - 4:15pm
Tahoma 5 @ TCC The Conference Center (TCC) - Separate from WSCC building

3:40pm

Deep Dive: Testing SIG - Cole Wagner & Katharine Berry, Google
This presentation is intended for contributors who want to know more about how testing is done for the project or want to write new test jobs themselves. We will briefly explain that open source Kubernetes builds and tests are executed by Prow as ProwJobs, then we’ll walk through the life of a ProwJob, demoing job triggering, execution, reporting, and cleanup. After that we’ll describe some pains we had withProwJobs and showcase some recent improvements and additions from SIG-Testing that ease them by making it easier to create job images, configure jobs to run, and display job artifacts: - Prow’s Pod Utilities transparently provide source code checkout and log/metadata upload to job containers. - Splitting Prow’s job config into multiple files to granularly specify ownership and ease review. - Using reasonable defaults for ProwJob fields to reduce the size and repetition of our job configs.

Speakers
avatar for Katharine Berry

Katharine Berry

Software Engineer, Google
CW

Cole Wagner

Software Engineer, Google
I've been working on GKE Engprod for a little over a year now. I primarily work on testing infrastructure, process automation, and automated PR merging for the Kubernetes Github org. I specifically focus on Prow and Tide



Thursday December 13, 2018 3:40pm - 4:15pm
3 A/B

3:40pm

Deep Dive: Virtual Kubelet - Jeremy Rickard & Brian Goff, Microsoft
This deep dive session will take you through what it means to be a provider or developer within the virtual kubelet project. We will go deeper into the virtual kubelet interface and discuss design decisions that were made in the last few months. We will also discuss the proposed roadmap to getting virtual kubelet to a 1.0 release. 

Speakers
avatar for Brian Goff

Brian Goff

Senior Software Engineer, Microsoft
Core maintainer on the Moby project.Love GoLove ContainersKube Noob.
avatar for Jeremy Rickard

Jeremy Rickard

Senior Software Engineer, Microsoft
Jeremy Rickard is a software engineer on the Cloud Native Compute Microsoft in Colorado working on Virtual Kubelet, Open Service Broker for Azure and Service Catalog. Before that, he worked at VMware and helped build infrastructure and services that support VMware Cloud Services... Read More →



Thursday December 13, 2018 3:40pm - 4:15pm
Yakima 1 @ TCC The Conference Center (TCC) - Separate from WSCC building

3:40pm

Deep Dive: VMware SIG – Michael Gasch & Steven Wong, VMware
Kubernetes allows using topology labels to affect the scheduler’s placement of pods. This is used to spread pods across availability zones, while still respecting resource access and availability concerns. When Kubernetes runs on vSphere, the hypervisor platform also supports an underlying tier of high availability and automated placement options, for both control plane and worker nodes. 2 levels of scheduling and resource management are active. Currently no automatic scheduling integration occurs, that is, Kubernetes is not aware of the underlying vSphere topology (sites, affinity groups, NUMA, etc.). This session will explain the options to gain better performance, resource optimization and availability through tuning of vSphere, and Kubernetes configuration and labeling. This is applicable to any K8s distribution running on the vSphere stack.

Speakers
avatar for Michael Gasch

Michael Gasch

Application Platform Architect 应用平台架构师, VMware
Interests:- Distributed Systems theory and practical implementations- Building distributed services with Kubernetes- Golang兴趣:- 分布式系统理论和实际实施- 使用Kubernetes构建分布式服务- Golang“
avatar for Steven Wong

Steven Wong

Open Source Engineer, VMware
Steve Wong has been active in the Kubernetes and Apache Mesos communities since 2015. He is chair of the VMware SIG, and a co-organizer of the IoT and Edge Working Group on the Kubernetes project. He is a past speaker at KubeCon, MesosCon, Open Source Summit, SCALE, and meetups in... Read More →



Thursday December 13, 2018 3:40pm - 4:15pm
2 A/B

3:40pm

Deep Dive: Helm - Matt Butcher & Adam Reese, Microsoft
The Helm Deep Dive will have two parts.

The first half will cover the status of Helm 3, with focus on the new security model, changes to charts, federated repositories, and the Helm core library. We will talk about the impact on the user but also cover the internal architecture.

The second half will be a working session where Helm maintainers and contributors can come together to discuss issues that benefit from face to face conversations. 

Speakers
avatar for Matt Butcher

Matt Butcher

Principal Software Engineer, Microsoft
Matt Butcher is a Principal Software Developer at Microsoft, where he leads the team of open source developers that manage Helm, CNAB, Brigade, Porter, and several other projects. Matt has a Ph.D. in philosophy, and is the author of eight technical books. He’s also the co-author... Read More →
avatar for Adam Reese

Adam Reese

Software Engineer, Microsoft
Adam Reese is a core maintainer for the Kubernetes Helm project. As a Senior Engineer at Microsoft, he has contributed to many open source projects. Over his 15 years building software, Adam has built everything from distributed pipeline processors to embedded systems.


Thursday December 13, 2018 3:40pm - 5:05pm
602-604

4:30pm

Deep Dive: Big Data SIG - Erik Erlandson, Red Hat & Yinan Li, Google
This presentation will cover two projects from sig-big-data: Apache Spark on Kubernetes and Apache Airflow on Kubernetes. Kubernetes became a native scheduler backend for Spark in 2.3 and we have been working on expanding the feature set as well as hardening the integration since then. Apache Airflow on Kubernetes achieved a big milestone with the new Kubernetes Operator for natively launching arbitrary Pods and the Kubernetes Executor that is a Kubernetes native scheduler for Airflow. We will give an overview of the current state and present the roadmap of both projects, and give attendees opportunities to ask questions and provide feedback on roadmaps.

Speakers
avatar for Erik Erlandson

Erik Erlandson

Principal Software Engineer, Red Hat
YL

Yinan Li

Software Engineer, Google
Yinan Li is currently a Software Engineer at Google. He focuses on work that enriches Kubernetes with enterprise-grade data management capabilities and work that enables large-scale data processing on Kubernetes, including the Kubernetes scheduler backend for Apache Spark. Yinan is... Read More →



Thursday December 13, 2018 4:30pm - 5:05pm
Yakima 1 @ TCC The Conference Center (TCC) - Separate from WSCC building

4:30pm

Deep Dive: Harbor - Tan Jiang & Jia Zou, VMware
Harbor is an open source trusted cloud native registry project that stores, signs, and scans content. It has been widely used by organizations large and small around the world to resolve the image management challenges. In this session, we will cover some advanced features of using Harbor, such as image replication with label filtering, image management in a cloud environment, unified management of Helm chart and container images, and highly-available deployments. Furthermore, the team would love to get feedback from users and contributors about current features and future roadmap.

Speakers
avatar for Tan Jiang

Tan Jiang

Staff Engineer, VMware
I'm a software engineer from VMware, who joined the company around the end of 2015. Currently working on a open source registry project called Harbor. I'm one of the founding member of this project. I have been giving speech in different meet-ups talking about docker image management... Read More →
avatar for Steven Zou

Steven Zou

Staff Engineer, VMware
Jia Zou (Steven) is a staff engineer of VMware China R&D. He is primarily working on the open source Project Harbor which is an enterprise-class container image registry as lead engineer and core maintainer. Moreover, he’s doing innovation and incubation of projects on Kubernetes... Read More →



Thursday December 13, 2018 4:30pm - 5:05pm
3 A/B

4:30pm

Deep Dive: Minikube - Bálint Pató & Thomas Strömberg, Google
This session is for new and seasoned minikube contributors. If you want to develop a deep understanding of the minikube architecture and see how you can contribute, where the product is evolving, explore new features and have a discussion about the future of minikube, this session is for you.

Thursday December 13, 2018 4:30pm - 5:05pm
Tahoma 5 @ TCC The Conference Center (TCC) - Separate from WSCC building

4:30pm

Deep Dive: NATS - Colin Sullivan & Wally Quevedo, Synadia
The NATS project and its ecosystem have been continuously evolving since joining the CNCF and in this session we will share a retrospective of what is the current state of the art and overall direction of the project in terms of security, performance, reliability, and integration with other cloud native tools such as Kubernetes. If are you actively evaluating NATS and want to learn the latest best practices, are writing clients for it, production user or interested in becoming a contributor, then you should definitely attend. For those new to NATS, we suggest also attending the NATS introduction session.

Speakers
avatar for Waldemar Quevedo

Waldemar Quevedo

Synadia, Senior Engineer
Waldemar Quevedo is a Software Engineer at Synadia, where he works on the NATS project and the ecosystem around it. He is author of the "Practical NATS" book, which is one of the first books about the project. Before he was at Apcera where he worked on a container orchestration system... Read More →
avatar for Colin Sullivan

Colin Sullivan

Product Manager, Synadia
Colin is the product manager of NATS (https://nats.io). He has extensive experience developing messaging products and designing distributed systems. Prior to Synadia, Colin worked at Apcera and TIBCO software.



Thursday December 13, 2018 4:30pm - 5:05pm
2 A/B

4:30pm

Deep Dive: Scheduling SIG - Bobby (Babak) Salamat, Google
This talk will be useful for cluster operators who are interested in learning about new scheduling features in Kubernetes. The talk will provide insights about ways to run clusters more efficiently and securely. We will give a brief summary of existing Scheduler features and then provide more details about some of the new features of the scheduler, namely priority and preemption, and gang scheduling. We will also provide a summary of Descheduler. Changes in the cluster size and available resources happen continuously. These changes may make some of the scheduling decisions made before sub-optimal under new conditions. Descheduler monitors clusters and helps fixing previously made scheudling decisions by removing (descheduling) already running Pods when there are better placement opportunities in clusters. We will also talk about the new Pod scheduling policies that allow admins to restrict scheduling properties of Pods. Pod scheduling policies help prevent abuse in clusters where not all users are trusted.

Speakers
avatar for Babak Salamat

Babak Salamat

Staff Software Engineer, Google
Bobby Salamat is co-lead of Kubernetes SIG Scheduling and co-maintainer of Kubernetes default scheduler. He is interested in advanced scheduling techniques to improve resource efficiency of clusters. He is also interested in improving user experience and making default behavior of... Read More →



Thursday December 13, 2018 4:30pm - 5:05pm
618-620